Page MenuHomePhabricator
Differential D12258

[keyserver] update claim username responder to take username and password
ClosedPublic
Actions

Authored by varun on May 31 2024, 2:01 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mon, Nov 18, 1:38 PM
Unknown Object (File)
Tue, Nov 12, 10:00 AM
Unknown Object (File)
Tue, Nov 12, 9:56 AM
Unknown Object (File)
Tue, Nov 12, 8:33 AM
Unknown Object (File)
Tue, Nov 12, 7:32 AM
Unknown Object (File)
Tue, Nov 12, 1:13 AM
Unknown Object (File)
Thu, Nov 7, 8:42 PM
Unknown Object (File)
Thu, Nov 7, 7:14 PM
View All 66 Files
Subscribers
tomek

Details

Reviewers
ashoat
Commits
rCOMM1f76626f6f40: [keyserver] update claim username responder to take username and password
Summary

logged out clients will be anonymous viewers to the keyserver, so we'll need a username and password to attest that the user is who they say they are

Test Plan

tested in following diff by calling the responder and then using the message from the keyserver to successfully authenticate with identity service

Diff Detail

Repository
rCOMM Comm
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

varun created this revision.May 31 2024, 2:01 PM
Herald added a subscriber: tomek. · View Herald TranscriptMay 31 2024, 2:01 PM
varun added a child revision: D11912: [lib] add reserved username workflow to identity login actions.May 31 2024, 2:02 PM
varun added inline comments.
lib/actions/user-actions.js
215 ↗(On Diff #40812)

this was timing out pretty consistently on staging so i increased the timeout threshold

varun published this revision for review.May 31 2024, 2:12 PM
Harbormaster completed remote builds in B29332: Diff 40812.May 31 2024, 2:18 PM
ashoat accepted this revision.Jun 1 2024, 12:08 PM
ashoat added inline comments.
keyserver/src/endpoints.js
463 ↗(On Diff #40812)

It looks like this might cause all callsites to this endpoint on existing clients to fail. Are any existing clients using this endpoint?

keyserver/src/responders/user-responders.js
964–967 ↗(On Diff #40812)

Reduce indentation on these three lines

979 ↗(On Diff #40812)

If !userRow.hash, should we throw invalid_parameters instead, since this account wasn't required originally with the authoritative keyserver, and can't be reserved?

lib/actions/user-actions.js
215 ↗(On Diff #40812)

Should we increase it further? Isn't our default timeout longer than this? Should we just remove this override?

225 ↗(On Diff #40812)

We could probably avoid spreading here if we wrap the declaration with Object.freeze, but in my comment above I suggest removing this override entirely

This revision is now accepted and ready to land.Jun 1 2024, 12:08 PM
varun updated this revision to Diff 40853.Jun 3 2024, 6:30 AM

rebase

varun added inline comments.Jun 3 2024, 6:37 AM
keyserver/src/endpoints.js
463 ↗(On Diff #40812)

no there are no existing clients using this endpoint

keyserver/src/responders/user-responders.js
979 ↗(On Diff #40812)

that makes sense

lib/actions/user-actions.js
215 ↗(On Diff #40812)

yeah it can just be removed. default timeout is 10 seconds i believe

Harbormaster completed remote builds in B29367: Diff 40853.Jun 3 2024, 6:50 AM
Closed by commit rCOMM1f76626f6f40: [keyserver] update claim username responder to take username and password (authored by varun). · Explain WhyJun 3 2024, 6:50 AM
This revision was automatically updated to reflect the committed changes.
varun added a commit: rCOMM1f76626f6f40: [keyserver] update claim username responder to take username and password.

Revision Contents
Changeset List

PathSize
keyserver/
src/
3 lines
responders/
35 lines
lib/
actions/
18 lines
types/
5 lines

Diff 40857

View Options

keyserver/src/endpoints.js

Loading...
View Options

keyserver/src/responders/user-responders.js

Loading...
View Options

lib/actions/user-actions.js

Loading...
View Options

lib/types/account-types.js

Loading...