Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature/openid session impersonation #223

Merged
merged 5 commits into from
Oct 29, 2020
Merged

Feature/openid session impersonation #223

merged 5 commits into from
Oct 29, 2020

Conversation

StyleT
Copy link
Contributor

@StyleT StyleT commented Oct 29, 2020

No description provided.

oleh-momot
oleh-momot suggested changes Oct 29, 2020
View reviewed changes
registry/server/auth.ts Outdated
@@ -255,5 +260,9 @@ async function getEntityWithCreds(provider: string, identifier: string, secret:

delete user.secret;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So, it does not need anymore if I got it correctly

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

fixed

registry/tests/auth.spec.ts Outdated
@@ -79,7 +81,7 @@ describe('Authentication / Authorization', () => {
})
.expect(200)
.expect('set-cookie', /connect\.sid=.+; Path=\/; HttpOnly/)
.expect('set-cookie', /ilc:userInfo=%7B%22identifier%22%3A%22root%22%2C%22role%22%3A%22admin%22%7D; Path=\//);
.expect('set-cookie', /ilc:userInfo=%7B%22authEntityId%22%3A1%2C%22identifier%22%3A%22root%22%2C%22role%22%3A%22admin%22%7D; Path=\//);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we use URL encode and decode here and in other such places?
Because I guess, if something will be wrong it will take us an extra effort to understand exactly what it is wrong

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

fixed

@StyleT StyleT merged commit a9711db into master Oct 29, 2020
@StyleT StyleT deleted the feature/openid_session_impersonation branch October 29, 2020 13:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@oleh-momot oleh-momot oleh-momot approved these changes

@nightnei nightnei nightnei approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@StyleT @nightnei @oleh-momot