Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Accept access token from Authorization header #1720

Open
wants to merge 6 commits into
base: master
Choose a base branch
from
Open

Accept access token from Authorization header #1720

wants to merge 6 commits into from
+238 −31

Conversation

Qup42
Copy link
Member

@Qup42 Qup42 commented Jan 20, 2025

The access token could previously only be passed as a parameter (field in the data for application/x-www-form-urlencoded and query parameter otherwise). With this PR the access token is also read from the Authorization header in the format Bearer <access token>. The Authorization header (if present) takes precedence over the parameter.

Resolves #1691

Qup42
Qup42 commented Jan 20, 2025
View reviewed changes
Copy link
Member Author

@Qup42 Qup42 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some initial comments. Mostly waiting for another PR to be merged, to avoid excessive conflicts.

test/ServerTest.cpp Outdated Show resolved Hide resolved
test/ServerTest.cpp Outdated Show resolved Hide resolved
src/engine/Server.cpp Outdated Show resolved Hide resolved
@codecov Codecov
Copy link

codecov bot commented Jan 20, 2025
edited
Loading

Codecov Report

Attention: Patch coverage is 92.30769% with 3 lines in your changes missing coverage. Please review.

Project coverage is 89.91%. Comparing base (d7ec9be) to head (4b5194f).

Files with missing lines Patch % Lines
src/engine/Server.cpp 92.30% 3 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #1720      +/-   ##
==========================================
+ Coverage   89.90%   89.91%   +0.01%     
==========================================
  Files         393      393              
  Lines       37479    37512      +33     
  Branches     4221     4227       +6     
==========================================
+ Hits        33694    33730      +36     
+ Misses       2482     2480       -2     
+ Partials     1303     1302       -1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@Qup42
Copy link
Member Author

Qup42 commented Jan 20, 2025

Note: The suggestions is to use a raw string literal for a string with 3 ". A raw string literal would be awkward for the rest of the error message string (".). To avoid having a raw literal string and a normal string next to each other, I have decided to not apply the suggestion.

joka921
joka921 requested changes Jan 22, 2025
View reviewed changes
Copy link
Member

@joka921 joka921 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A first round of reviews.

src/engine/Server.cpp Outdated Show resolved Hide resolved
src/engine/Server.cpp Show resolved Hide resolved
test/ServerTest.cpp Outdated Show resolved Hide resolved
test/ServerTest.cpp Outdated Show resolved Hide resolved
src/engine/Server.cpp Outdated Show resolved Hide resolved
@sparql-conformance
Copy link

Conformance check passed ✅

No test result changes.

Details: https://qlever.cs.uni-freiburg.de/sparql-conformance-ui?cur=4b5194f58d81bd7a7a155304c9effe3fea57ac3b&prev=d7ec9be2e0405573456466b1489f77be43514ef3

@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

joka921
joka921 requested changes Jan 23, 2025
View reviewed changes
Copy link
Member

@joka921 joka921 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also two very minor suggestions.

src/engine/Server.cpp
tokenFromAuthorizationHeader != tokenFromParameter) {
throw std::runtime_error(
"Access token is specified both in the `Authorization` Header and the "
"parameters, but they aren't the same.");
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The first part is gread, maybe make the second part "and the access-token parameter, then really everybody knows how to fix this.

src/engine/Server.cpp
@@ -1128,8 +1140,7 @@ bool Server::checkAccessToken(
if (!accessToken) {
return false;
}
auto accessTokenProvidedMsg = absl::StrCat(
"Access token \"access-token=", accessToken.value(), "\" provided");
auto accessTokenProvidedMsg = absl::StrCat("Access token was provided");
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The StrCat is absolutely redundant and should be removedd.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@joka921 joka921 joka921 requested changes

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Accept access_token provided via header.
2 participants
@Qup42 @joka921