Merge pull request #2767 from HHS/minor-auth-fixes

Minor FakeAuth® tweak
HHS · Sep 5, 2024 · c55be1b · c55be1b
2 parents 127c5af + 237aeda
commit c55be1b
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/backend/ops_api/ops/auth/decorators.py b/backend/ops_api/ops/auth/decorators.py
@@ -120,8 +120,7 @@ def check_user_session_function(user: User):
     A user session is considered valid if:
     1. The user has an active user session.
     2. The access token in the request is the same as the latest user session access token.
-    3. The ip address in the request is the same as the latest user session ip address.
-    4. The last_accessed_at field of the latest user session is not more than a configurable threshold ago.
+    3. The last_accessed_at field of the latest user session is not more than a configurable threshold ago.
     """
     user_sessions = get_all_user_sessions(user.id, current_app.db_session)
     latest_user_session = get_latest_user_session(user.id, current_app.db_session)

diff --git a/backend/ops_api/ops/environment/default_settings.py b/backend/ops_api/ops/environment/default_settings.py
@@ -65,6 +65,7 @@
     "00000000-0000-1111-a111-000000000018",
     "00000000-0000-1111-a111-000000000019",
     "00000000-0000-1111-a111-000000000020",
+    "00000000-0000-1111-a111-000000000021",
 ]
 
 DOCUMENT_PROVIDERS = {