Page MenuHomePhabricator
Differential D13318

[comm-lib] Let BlobServiceClient accept service-to-service token
ClosedPublic
Actions

Authored by bartek on Sep 13 2024, 2:28 AM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Nov 10, 11:11 AM
Unknown Object (File)
Sun, Oct 20, 2:57 PM
Unknown Object (File)
Sun, Oct 20, 2:57 PM
Unknown Object (File)
Sun, Oct 20, 2:57 PM
Unknown Object (File)
Mon, Oct 14, 2:28 PM
Unknown Object (File)
Oct 12 2024, 4:02 AM
Unknown Object (File)
Oct 9 2024, 8:23 AM
Unknown Object (File)
Oct 8 2024, 3:57 PM
View All 32 Files
Subscribers
ashoat
tomek

Details

Reviewers
kamil
will
varun
Commits
rCOMM8f9609086524: [comm-lib] Let BlobServiceClient accept service-to-service token
Summary

Updated BlobServiceClient to accept service-to-service token requests. This means HTTP services that rely on this Blob client, can accept service-to-service token and pass it through to Blob Service.

In short, previously:

  • client -[CSAT]-> backup -[S2SToken]-> blob was possible
  • identity -[S2SToken]-> backup -[S2SToken]-> blob wasn't possible

This diff makes the latter possible too, by overriding the accepts_services_token() for BlobServiceClient.

Test Plan

Ran Backup and Blob locally, supplied Backup request with service-to-service token instead of CSAT, made sure the COMM_SERVICES_DISABLE_CSAT_VERIFICATION is disabled. Request succeeded.

Diff Detail

Repository
rCOMM Comm
Lint
No Lint Coverage
Unit
No Test Coverage

Revision Contents
Changeset List

PathSize
shared/
comm-lib/
src/
blob/
4 lines

Diff 44121

View Options

shared/comm-lib/src/blob/client.rs

Loading...