Skip to content

fix: handling of HTTP headers in EventStreams #1396

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

fix: handling of HTTP headers in EventStreams #1396

wants to merge 1 commit into from
+183 −41

Conversation

mkanoor
Copy link
Contributor

@mkanoor mkanoor commented Sep 18, 2025
edited
Loading

To include all headers you have to explicitly set the

additional_data_headers = *

  • If the header key is used for Authentication it will be redacted

  • To pick and choose which headers get included, list them as a comma delimited string in additional_data_headers e.g Host,Origin,X-Request-ID

  • Any header that starts with X-Envoy will be dropped

  • X-Trusted-Proxy,X-Forwarded-For,X-Real-IP will be dropped

@mkanoor mkanoor requested a review from a team as a code owner September 18, 2025 01:05
@codecov-commenter
Copy link

codecov-commenter commented Sep 18, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 94.35%. Comparing base (fd3d0ce) to head (19f774c).
⚠️ Report is 1 commits behind head on main.

@@           Coverage Diff           @@
##             main    #1396   +/-   ##
=======================================
  Coverage   94.35%   94.35%           
=======================================
  Files         339      339           
  Lines       19972    19983   +11     
=======================================
+ Hits        18844    18855   +11     
  Misses       1128     1128
Flag Coverage Δ
unit-int-tests-3.11 94.30% <100.00%> (+<0.01%) ⬆️
unit-int-tests-3.12 94.35% <100.00%> (+<0.01%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files with missing lines Coverage Δ
src/aap_eda/api/views/external_event_stream.py 89.93% <100.00%> (+0.57%) ⬆️
tests/integration/api/test_event_stream_token.py 100.00% <100.00%> (ø)
🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Alex-Izquierdo
Alex-Izquierdo reviewed Sep 18, 2025
View reviewed changes
@Alex-Izquierdo
Copy link
Collaborator

this change would need also update our product documentation, right?

Alex-Izquierdo
Alex-Izquierdo previously approved these changes Sep 19, 2025
View reviewed changes
bzwei
bzwei reviewed Sep 19, 2025
View reviewed changes
@mkanoor
fix: handling of HTTP headers in EventStreams
19f774c 
To include all headers you have to explicitly set the

additional_data_headers = *

* If the header key is used for Authentication it will be redacted

* To pick and choose which headers get included, list them as a comma delimited string in additional_data_headers
e.g Host,Origin,X-Request-ID

* Any header that starts with X-Envoy will be dropped
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bzwei bzwei bzwei approved these changes

@Alex-Izquierdo Alex-Izquierdo Alex-Izquierdo left review comments

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
run-e2e
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@mkanoor @codecov-commenter @Alex-Izquierdo @bzwei