Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(api): fix admin user access #3441

Merged
merged 1 commit into from
Jan 14, 2025
Merged

fix(api): fix admin user access #3441

merged 1 commit into from
Jan 14, 2025

Conversation

silvestre
Copy link
Member

@silvestre silvestre commented Jan 8, 2025
edited
Loading

Issue

Access for admin users was not working anymore.

In some parts of the code not only the token itself but the whole content of the Authorization (starting with Bearer ) header was transported in parameters called token, causing the token introspection to fail.

Fix

Only transport the plain token in variable called token. Add an acceptance test case.

@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@silvestre silvestre changed the title fix(api): add admin user access test for policy retrieval fix(api): fix admin user access Jan 13, 2025
@silvestre silvestre marked this pull request as ready for review January 13, 2025 15:58
@silvestre silvestre merged commit 19b1401 into main Jan 14, 2025
40 checks passed
@silvestre silvestre deleted the fix-admin-handling branch January 14, 2025 13:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@asalan316 asalan316 asalan316 approved these changes

Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@silvestre @asalan316