Paths

Table of Contentst

Differential D10962

[lib] Add identityInvalidSessionDowngrade
ClosedPublic
Actions

Authored by inka on Feb 6 2024, 2:41 AM.

Tags

None

Referenced Files

	F2901332: D10962.diff
	Sat, Oct 5, 12:34 PM

	Unknown Object (File)
	Fri, Oct 4, 12:34 AM

	Unknown Object (File)
	Fri, Oct 4, 12:34 AM

	Unknown Object (File)
	Fri, Oct 4, 12:34 AM

	Unknown Object (File)
	Fri, Oct 4, 12:34 AM

	Unknown Object (File)
	Mon, Sep 9, 10:37 AM

	Unknown Object (File)
	Aug 29 2024, 11:46 PM

	Unknown Object (File)
	Aug 29 2024, 10:21 AM

View All 38 Files

Subscribers

Details

Reviewers

michal
kamil
ginsu

Commits

rCOMM546bf954bd95: [lib] Add identityInvalidSessionDowngrade

Summary

Adding a function that checkes if session downgrade is valid or not. Similarily to invalidSessionDowngrade, we check if

Some user is currently logged in
The action is trying to downgrade the session (currentUserInfo is being set to null or {anonymous: true})
The user is the same user the action was dispatched for
The session is the same session the action was dispatched for (checking if CSAT changed)

See this discussion for examples of scenarios in which a session downgrade is invalid

Test Plan

Tested that if different user infos are provided in actionCurrentUserInfo and preRequestUserState.currentUserInfo then the function returns true.
Tested that if a different CSAT is present in currentReduxState and preRequestUserState, the function returns true.

Diff Detail

Repository

Lint

No Lint Coverage

Unit

No Test Coverage

Event Timeline

inka created this revision.Feb 6 2024, 2:41 AM

Herald added subscribers: tomek, ashoat. · View Herald TranscriptFeb 6 2024, 2:41 AM

inka added a child revision: D10963: [web][native] Handle invalidSessionDowngrade for deleteKeyserverAccountActionTypes.success.Feb 6 2024, 2:49 AM

Harbormaster completed remote builds in B26532: Diff 36669.Feb 6 2024, 2:58 AM

inka requested review of this revision.Feb 6 2024, 2:58 AM

inka mentioned this in D10965: [lib][web][native] Handle invalidSessionDowngrade for identity actions.Feb 6 2024, 2:59 AM

michal accepted this revision.Feb 7 2024, 3:39 AM

This revision is now accepted and ready to land.Feb 7 2024, 3:39 AM

Closed by commit rCOMM546bf954bd95: [lib] Add identityInvalidSessionDowngrade (authored by inka). · Explain WhyFeb 7 2024, 9:07 AM

This revision was automatically updated to reflect the committed changes.

inka added a commit: rCOMM546bf954bd95: [lib] Add identityInvalidSessionDowngrade.

inka mentioned this in rCOMM7a6a2ce0c3d8: [lib][web][native] Handle invalidSessionDowngrade for identity actions.

Revision Contents
Changeset List

Path

Size

lib/

shared/

session-utils.js

38 lines

types/

session-types.js

5 lines

Diff 36669

lib/shared/session-utils.js

Loading...

lib/types/session-types.js

Loading...