fix: allow noauthentication destinations with proxytype “OnPremise” (#…

…4354) * fix: allow noauthentication destinations with proxytype “OnPremise” * Apply suggestions from code review Co-authored-by: Deeksha Sinha <88374536+deekshas8@users.noreply.github.com> --------- Co-authored-by: Deeksha Sinha <88374536+deekshas8@users.noreply.github.com>
SAP · Dec 13, 2023 · 28c9cb7 · 28c9cb7
1 parent 4d2b49b
commit 28c9cb7
Show file tree

Hide file tree

Showing 4 changed files with 11 additions and 29 deletions.
diff --git a/.changeset/great-ads-live.md b/.changeset/great-ads-live.md
@@ -0,0 +1,5 @@
+---
+'@sap-cloud-sdk/connectivity': minor
+---
+
+[Fixed Issue] Allow the use of authentication type `NoAuthentication` with proxy type `OnPremise` without requiring the `SAP-Connectivity-Authentication` header.
diff --git a/.changeset/witty-suns-vanish.md b/.changeset/witty-suns-vanish.md
@@ -0,0 +1,5 @@
+---
+'@sap-cloud-sdk/connectivity': minor
+---
+
+[Compatibility Note] Using Principal Propagation through authentication type `NoAuthentication` is no longer supported. This resulted in erroneous behavior for destinations with authentication type `NoAuthentication`. If you need to use Principal Propagation use authentication type `PrincipalPropagation`.
diff --git a/packages/connectivity/src/scp-cf/authorization-header.spec.ts b/packages/connectivity/src/scp-cf/authorization-header.spec.ts
@@ -54,7 +54,7 @@ describe('buildAuthorizationHeaders', () => {
       ).resolves.not.toThrow();
     });
 
-    it('defaults to NoAuthentication and does not create authentication headers when only url is defined', async () => {
+    it('defaults to NoAuthentication and does not create authentication headers when only URL is defined', async () => {
       const spy = jest.spyOn(destinationImport, 'sanitizeDestination');
       const headerPromise = buildAuthorizationHeaders({
         url: 'https://example.com'
@@ -65,31 +65,6 @@ describe('buildAuthorizationHeaders', () => {
       );
       expect((await headerPromise).authorization).toBeUndefined();
     });
-
-    it("does not add authentication headers for proxy type 'Internet'", async () => {
-      const headers = await buildAuthorizationHeaders({
-        url: defaultDestination.url,
-        proxyType: 'Internet'
-      });
-      expect(headers.authorization).toBeUndefined();
-    });
-
-    it("adds on premise related headers for authentication type 'NoAuthentication' combined with proxy type 'OnPremise'", async () => {
-      const destination = {
-        url: '',
-        authentication: 'NoAuthentication',
-        proxyType: 'OnPremise',
-        proxyConfiguration: {
-          headers: {
-            'SAP-Connectivity-Authentication': 'someValueDestination',
-            'Proxy-Authorization': 'someProxyValue'
-          }
-        }
-      } as Destination;
-
-      const headers = await buildAuthorizationHeaders(destination);
-      checkHeaders(headers);
-    });
   });
 
   describe('client credentials', () => {

diff --git a/packages/connectivity/src/scp-cf/authorization-header.ts b/packages/connectivity/src/scp-cf/authorization-header.ts
@@ -179,9 +179,6 @@ async function getAuthenticationRelatedHeaders(
       );
       return;
     case 'NoAuthentication':
-      if (destination.proxyType === 'OnPremise') {
-        return headerForPrincipalPropagation(destination);
-      }
       return;
     case 'ClientCertificateAuthentication':
       return;