-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: Enhance namespace authorisation check to verify when namespace has a period in it #2073
fix: Enhance namespace authorisation check to verify when namespace has a period in it #2073
Conversation
…as a period in it.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good. However, we need to reproduce (manually is fine) the test that @cconstab did which uncovered this issue and verify that the issue is resolved.
@gkc : Here are the logs related to reproducing the error, as well as the logs after the fix was applied. Command to generate the atKeys file
SSHNPD logs before fix
at_secondary_server logs before fix with unauthorized error when notifying
SSHNPD logs after fix
at_secondary_server logs after fix with notification sent successfully
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM - thank you @sitaram-kalluri and @purnimavenkatasubbu
- What I did
-d
sense) at_libraries#636- How I did it
Atkey.fromString(key).namespace
returns only the last segment of the namespace. For example, if namespace is "foo.bar", then only "bar" is returned. Therefore, no matching authorized namespace is found and an unauthorized exception is raised.- How to verify it
- Description for the changelog