Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature/issue1058 #1059

Open
wants to merge 18 commits into
base: dev
Choose a base branch
from
Open

Feature/issue1058 #1059

wants to merge 18 commits into from

Conversation

chrisala
Copy link
Collaborator

Please don't merge this one yet @temi - needs a bit of testing before being committed to the next release

@chrisala chrisala requested a review from temi January 28, 2025 04:57
temi
temi reviewed Jan 28, 2025
View reviewed changes
grails-app/services/au/org/ala/ecodata/UserService.groovy
return null
}

if (request.isUserInRole(scope)) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

does isUserInRole check scope attribute or just role attribute?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, for M2M tokens it applies the role check to the scopes rather than the user profile roles. The alternatives I could find to identify M2M was to check the principal (which is set to the clientId) or a check of the profile class (which introduces a dependency on the plugin implementation).
I thought since we otherwise were using the scopes it made sense to go with that approach?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

(The disadvantage of checking the client id is we need to manage a list of authorized clients)

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, looks good to me. I was just checking.

chrisala and others added 14 commits January 30, 2025 11:18
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
89c76b7
@chrisala
Updated user check to work with CAS #1058
fdaece9
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
0b1bc52
@chrisala
Bump travis to java17 #1058
c2b053e
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
b1f022a
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
b39ae2a
@temi
Merge branch 'dev' into feature/issue1058
10de76b
@chrisala
Check for clonable before calling clone for java17 #1058
8a418ad
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
58d1eed
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
86ddfc4
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
4e7ea0e
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
e4a5817
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
4d67e67
@chrisala
Merge remote-tracking branch 'origin/dev' into feature/issue1058
dd25a6b
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@temi temi temi approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@chrisala @temi