Page MenuHomePhabricator
Differential D12412

[comm-lib] Add env var to disable CSAT verification
ClosedPublic
Actions

Authored by bartek on Jun 13 2024, 12:59 AM.
Tags
None
Referenced Files
F2831587: D12412.diff
Sat, Sep 28, 12:30 AM
Unknown Object (File)
Mon, Sep 9, 10:28 PM
Unknown Object (File)
Mon, Sep 9, 5:18 PM
Unknown Object (File)
Mon, Sep 9, 5:08 PM
Unknown Object (File)
Mon, Sep 9, 3:35 AM
Unknown Object (File)
Mon, Sep 9, 2:59 AM
Unknown Object (File)
Mon, Sep 9, 2:08 AM
Unknown Object (File)
Wed, Sep 4, 2:26 AM
View All 72 Files
Subscribers
ashoat
tomek

Details

Reviewers
varun
will
kamil
Commits
rCOMMb19587c8124d: [comm-lib] Add env var to disable CSAT verification
Summary

Introduced the COMM_SERVICES_DISABLE_CSAT_VERIFICATION env var flag that lets us skip
token verification for services.

Needed to replace built-in BearerAuth middleware extractor with a custom one, that
allows Authorization header to be optional. By the way, gained converting header value
into our AuthorizationCredential type for free.

Depends on D12411

Test Plan

Tested more deeply in further diffs. At this point, wrapped Blob service endpoints with the middleware:

  • With env var set, request succeeded with and without Authorization header
  • Without the env var, HTTP 401 was returned if header was not provided or was malformed.

At this point, only header format is validated, credentials may be invalid

Diff Detail

Repository
rCOMM Comm
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

bartek created this revision.Jun 13 2024, 12:59 AM
bartek held this revision as a draft.
Herald added subscribers: tomek, ashoat. · View Herald TranscriptJun 13 2024, 12:59 AM
bartek added a child revision: D12414: [comm-lib] Verify CSAT in HTTP middleware.Jun 13 2024, 1:04 AM
Harbormaster completed remote builds in B29639: Diff 41262.Jun 13 2024, 1:15 AM
bartek published this revision for review.Jun 13 2024, 1:26 AM
varun accepted this revision.Jun 14 2024, 6:26 AM
varun added inline comments.
shared/comm-lib/src/http/auth.rs
73 ↗(On Diff #41262)

Authorization

This revision is now accepted and ready to land.Jun 14 2024, 6:26 AM
Closed by commit rCOMMb19587c8124d: [comm-lib] Add env var to disable CSAT verification (authored by bartek). · Explain WhyJun 18 2024, 2:19 AM
This revision was automatically updated to reflect the committed changes.
bartek added a commit: rCOMMb19587c8124d: [comm-lib] Add env var to disable CSAT verification.

Revision Contents
Changeset List

PathSize
shared/
comm-lib/
src/
auth/
20 lines
5 lines
http/
64 lines

Diff 41438

View Options

shared/comm-lib/src/auth/mod.rs

Loading...
View Options

shared/comm-lib/src/constants.rs

Loading...
View Options

shared/comm-lib/src/http/auth.rs

Loading...