Skip to content

UID2-5482 Use handleWithAudit for auth middleware #173

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
cYKatherine merged 7 commits into from
Jun 3, 2025
Merged

UID2-5482 Use handleWithAudit for auth middleware #173

cYKatherine merged 7 commits into from
Jun 3, 2025

Conversation

@cYKatherine
Copy link
Contributor

@cYKatherine cYKatherine commented May 29, 2025

No description provided.

@cYKatherine cYKatherine force-pushed the kcc-UID2-5482-audit-logging-in-optout branch from 4dabb1c to 38f7d2c Compare May 29, 2025 06:00
asloobq
asloobq reviewed Jun 2, 2025
View reviewed changes
src/main/java/com/uid2/optout/Const.java Outdated
public static final String OptOutDeleteExpiredProp = "optout_delete_expired";
public static final String PartnersConfigPathProp = "partners_config_path";
public static final String PartnersMetadataPathProp = "partners_metadata_path";
public static final String EnableAuditLoggingProp = "enable_audit_logging";
Copy link

@asloobq asloobq Jun 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we want the Auditlog to be enabled always for optout. So this config may become redundant later.

@cYKatherine cYKatherine self-assigned this Jun 2, 2025
@cYKatherine cYKatherine force-pushed the kcc-UID2-5482-audit-logging-in-optout branch from e02b247 to 440476a Compare June 3, 2025 00:18
@cYKatherine cYKatherine force-pushed the kcc-UID2-5482-audit-logging-in-optout branch from 440476a to f632b86 Compare June 3, 2025 00:18
asloobq
asloobq approved these changes Jun 3, 2025
View reviewed changes
src/main/java/com/uid2/optout/vertx/OptOutServiceVerticle.java Outdated
final String jwtAudience = jsonConfig.getString(Const.Config.OptOutUrlProp);
final String jwtIssuer = jsonConfig.getString(Const.Config.CorePublicUrlProp);
Boolean enforceJwt = jsonConfig.getBoolean(Const.Config.EnforceJwtProp, true);
Boolean enforceJwt = jsonConfig.getBoolean(Const.Config.EnforceJwtProp, false);
Copy link

@asloobq asloobq Jun 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

is this intentional to keep default value false ?

src/test/java/com/uid2/optout/auth/InternalAuthMiddlewareTest.java
Handler<RoutingContext> handler = internalAuth.handleWithAudit(nextHandler);
handler.handle(routingContext);
verifyNoInteractions(nextHandler);
verify(routingContext).fail(401);
Copy link

@asloobq asloobq Jun 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can you add a positive test case as well ?

Copy link
Contributor Author

@cYKatherine cYKatherine Jun 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done

@cYKatherine cYKatherine merged commit f04f6f2 into main Jun 3, 2025
4 checks passed
@cYKatherine cYKatherine deleted the kcc-UID2-5482-audit-logging-in-optout branch June 3, 2025 22:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@asloobq asloobq asloobq approved these changes

Assignees

@cYKatherine cYKatherine

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cYKatherine @asloobq