Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make current poc routes protected #22

Merged
merged 24 commits into from
Nov 6, 2023
Merged

Make current poc routes protected #22

merged 24 commits into from
Nov 6, 2023

Conversation

anthonyhashemi
Copy link
Contributor

@anthonyhashemi anthonyhashemi commented Oct 30, 2023
edited
Loading

https://national-archives.atlassian.net/browse/AYR-460

When doing some testing for some other work I realised that our POC login flow was broken and we weren't protecting the poc pages that contains data/should be protected. We need to do this before we deploy to sandbox at minimum.

Note: the flash messages show fine when not redirected, but when redirected they don't show on the redirected page, only on the one after that so need to fix that.

Changes in this PR

  • Fix login flow (still using sessions for now)
  • Make current poc routes protected

pgandhizaizi
pgandhizaizi approved these changes Oct 31, 2023
View reviewed changes
Copy link
Contributor

@pgandhizaizi pgandhizaizi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

reviewed , the decorator method is correct way to avoid duplication on code for each route protection , also refactoring of keycloak decode token is quite good too,
no issues found

@anthonyhashemi
Move is_valid_token_for_ayr to app/main/authorize/keycloak_login_requ…
ce20d1a 
…ired_decorator.py
@anthonyhashemi
Show flash messages on index.html
fa7588e
@anthonyhashemi
Fix access_token_login_required decorator
9247e44
@anthonyhashemi
Dont require login when running test config
d25c1a0
@anthonyhashemi
Instantiate one keycloak_openid object for the whole app using get_ke…
3ff1bda 
…ycloak_openid_object_from_aws_params and test get_keycloak_openid_object_from_aws_params
@anthonyhashemi
Fix access_token_login_required, its use and test it
2a4d135
@anthonyhashemi
Make the access_token_login_required_decorator tests paramtrized to r…
9f2f4ee 
…un across all routes we expect to be covered by this decorator
@anthonyhashemi
Dont require login when running test config by default and force it o…
74c2ffc 
…n for app/tests/test_keycloak_login_required_decorator.py
@anthonyhashemi
Sort out tests dependent on keycloak_openid
1021a21
@anthonyhashemi anthonyhashemi force-pushed the make-current-poc-routes-protected branch from 6d5ac0b to 05ce2ae Compare November 1, 2023 17:14
@anthonyhashemi anthonyhashemi force-pushed the make-current-poc-routes-protected branch from 05ce2ae to 1edbfa3 Compare November 1, 2023 17:44
@anthonyhashemi anthonyhashemi changed the title WIP | Make current poc routes protected Make current poc routes protected Nov 1, 2023
@anthonyhashemi anthonyhashemi force-pushed the make-current-poc-routes-protected branch from caa3c05 to 0c0eb0a Compare November 2, 2023 16:32
@anthonyhashemi anthonyhashemi merged commit e76dcdb into main Nov 6, 2023
7 checks passed
@anthonyhashemi anthonyhashemi deleted the make-current-poc-routes-protected branch January 4, 2024 16:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@pgandhizaizi pgandhizaizi pgandhizaizi approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@anthonyhashemi @pgandhizaizi