Skip to content

[Cleanup] Remove duplication in Netty4HttpRequestHeaderVerifier#3506

Merged
DarshitChanpura merged 10 commits intoopensearch-project:mainfrom
cwperks:header-verifier-cleanup
Oct 18, 2023
Merged

[Cleanup] Remove duplication in Netty4HttpRequestHeaderVerifier#3506
DarshitChanpura merged 10 commits intoopensearch-project:mainfrom
cwperks:header-verifier-cleanup

Conversation

@cwperks
Copy link
Member

@cwperks cwperks commented Oct 9, 2023
edited by DarshitChanpura
Loading

Description

This PR removes some duplication in the Netty4HttpRequestHeaderVerifier around the /_plugins/_security/api/authtoken endpoint and also abstracts the logic for where authentication is skipped into helper methods.

  • Category (Enhancement, New feature, Bug fix, Test fix, Refactoring, Maintenance, Documentation)

Maintenance

Check List

  • New functionality includes testing
  • New functionality has been documented
  • Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@cwperks
Abstract logic that skips BackendRegistry.authenticate to a common place
741a260 
Signed-off-by: Craig Perkins <craig5008@gmail.com>
@codecov
Copy link

codecov bot commented Oct 9, 2023
edited
Loading

Codecov Report

Merging #3506 (7ba265c) into main (904a966) will decrease coverage by 0.16%.
The diff coverage is 60.00%.

Impacted file tree graph

@@             Coverage Diff              @@
##               main    #3506      +/-   ##
============================================
- Coverage     65.03%   64.87%   -0.16%     
+ Complexity     3642     3639       -3     
============================================
  Files           282      282              
  Lines         20597    20595       -2     
  Branches       3390     3388       -2     
============================================
- Hits          13395    13361      -34     
- Misses         5519     5560      +41     
+ Partials       1683     1674       -9
Files Coverage Δ
...rg/opensearch/security/filter/SecurityRequest.java 100.00% <ø> (ø)
...opensearch/security/filter/SecurityRestFilter.java 69.23% <100.00%> (+0.29%) ⬆️
.../opensearch/security/filter/SecurityRestUtils.java 90.90% <100.00%> (+10.90%) ⬆️
...sl/http/netty/Netty4HttpRequestHeaderVerifier.java 85.36% <100.00%> (+4.97%) ⬆️
...rity/filter/SecurityRequestChannelUnsupported.java 0.00% <0.00%> (ø)
...zon/dlic/auth/http/saml/HTTPSamlAuthenticator.java 67.36% <0.00%> (-1.09%) ⬇️

... and 3 files with indirect coverage changes

@cwperks
Handle api/authtoken endpoint
2f6019b 
Signed-off-by: Craig Perkins <cwperx@amazon.com>
@cwperks cwperks force-pushed the header-verifier-cleanup branch from 92c94a6 to 2f6019b Compare October 9, 2023 13:27
@DarshitChanpura
Copy link
Member

DarshitChanpura commented Oct 11, 2023

@cwperks Should this be marked ready for review?

@cwperks
Merge branch 'main' into header-verifier-cleanup
3880612
@cwperks
Single shouldSkipAuthentication
12b7a5b 
Signed-off-by: Craig Perkins <cwperx@amazon.com>
@cwperks
Add tests
418af25 
Signed-off-by: Craig Perkins <cwperx@amazon.com>
@cwperks cwperks marked this pull request as ready for review October 12, 2023 15:45
@cwperks
Move var
36f6bb7 
Signed-off-by: Craig Perkins <cwperx@amazon.com>
willyborankin
willyborankin previously approved these changes Oct 16, 2023
View reviewed changes
peternied
peternied previously approved these changes Oct 16, 2023
View reviewed changes
@DarshitChanpura DarshitChanpura merged commit 900d9d5 into opensearch-project:main Oct 18, 2023
@opensearch-trigger-bot opensearch-trigger-bot bot mentioned this pull request Oct 18, 2023
Merged
opensearch-trigger-bot bot pushed a commit that referenced this pull request Oct 18, 2023
@github-actions
[Cleanup] Remove duplication in Netty4HttpRequestHeaderVerifier (#3506)
071d920 
Removes some duplication in the Netty4HttpRequestHeaderVerifier
around the `/_plugins/_security/api/authtoken` endpoint and also
abstracts the logic for where authentication is skipped into helper
methods.

Signed-off-by: Craig Perkins <craig5008@gmail.com>
Signed-off-by: Craig Perkins <cwperx@amazon.com>
(cherry picked from commit 900d9d5)
Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
cwperks pushed a commit that referenced this pull request Oct 18, 2023
@opensearch-trigger-bot @github-actions
[Backport 2.x] [Cleanup] Remove duplication in Netty4HttpRequestHeade…
af58ade 
…rVerifier (#3564)

Backport 900d9d5 from #3506.

Signed-off-by: Craig Perkins <craig5008@gmail.com>
Signed-off-by: Craig Perkins <cwperx@amazon.com>
Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
@nibix nibix mentioned this pull request Sep 10, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@DarshitChanpura DarshitChanpura DarshitChanpura approved these changes

@willyborankin willyborankin willyborankin left review comments

@cliu123 cliu123 Awaiting requested review from cliu123

@davidlago davidlago Awaiting requested review from davidlago

@RyanL1997 RyanL1997 Awaiting requested review from RyanL1997 RyanL1997 is a code owner

@reta reta Awaiting requested review from reta reta is a code owner

+2 more reviewers

@peternied peternied peternied approved these changes

@stephen-crawford stephen-crawford stephen-crawford approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@cwperks @DarshitChanpura @willyborankin @peternied @stephen-crawford