Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(decision): add support to register api keys to proxy #5168

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

feat(decision): add support to register api keys to proxy #5168

wants to merge 3 commits into from

Conversation

NishantJoshi00
Copy link
Member

Type of Change

  • Bugfix
  • New feature
  • Enhancement
  • Refactoring
  • Dependency updates
  • Documentation
  • CI/CD

Description

This PR adds support for exporting hashed api keys to the incoming proxy allowing for authentication outside the application facilitating detached authentication and ratelimiting

Additional Changes

  • This PR modifies the API contract
  • This PR modifies the database schema
  • This PR modifies application configuration/environment variables

Motivation and Context

How did you test it?

Checklist

  • I formatted the code cargo +nightly fmt --all
  • I addressed lints thrown by cargo clippy
  • I reviewed the submitted code
  • I added unit tests for my changes where possible

@NishantJoshi00 NishantJoshi00 self-assigned this Jul 1, 2024
@NishantJoshi00 NishantJoshi00 requested review from a team as code owners July 1, 2024 13:19
@NishantJoshi00 NishantJoshi00 linked an issue Jul 1, 2024 that may be closed by this pull request
[FEATURE] Allow authentication to be done outside the router application #4803
Open
akshay-97
akshay-97 reviewed Jul 1, 2024
View reviewed changes
crates/router/src/services/authentication/decision.rs
}
}

pub async fn add_publishable_key(
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should we combine with add_api_key and pass variant to a common function ?

akshay-97
akshay-97 reviewed Jul 1, 2024
View reviewed changes
crates/router/src/core/admin.rs
@@ -281,6 +281,25 @@ pub async fn create_merchant_account(
.await
.to_duplicate_response(errors::ApiErrorResponse::DuplicateMerchantAccount)?;

if let Some(api_key) = merchant_account.publishable_key.as_ref() {
let state = state.clone();
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should we clone only necessary data here?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

https://github.com/juspay/hyperswitch/pull/5168/files#r1661123714

NishantJoshi00
NishantJoshi00 commented Jul 1, 2024
View reviewed changes
crates/router/src/services/authentication/decision.rs

let response = state
.api_client
.send_request(state, request, None, false)
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@akshay-97 , we cannot pass standalone ApiClient as the send_request function takes SessionState as an input argument

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ah okay, sure

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@akshay-97 akshay-97 akshay-97 approved these changes

At least 2 approving reviews are required to merge this pull request.

Assignees

@NishantJoshi00 NishantJoshi00

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[FEATURE] Allow authentication to be done outside the router application
2 participants
@NishantJoshi00 @akshay-97