4.x: metrics and openapi endpoints should be authorized by default #7572

tvallin · 2023-09-12T15:46:32Z

Description

fix #7439

Documentation

no impact

...ervice-common/src/test/java/io/helidon/webserver/servicecommon/HelidonSecureFeatureTest.java

...ics/src/test/java/io/helidon/webserver/tests/observe/metrics/ObserveMetricsSecurityTest.java

Changes have been made

Signed-off-by: tvallin <thibault.vallin@oracle.com>

tvallin · 2023-09-27T18:31:37Z

Include a fix to #7510

Signed-off-by: tvallin <thibault.vallin@oracle.com>

tvallin added enhancement New feature or request metrics security open-api 4.x Version 4.x labels Sep 12, 2023

tvallin added this to the 4.0.0-RC1 milestone Sep 12, 2023

tvallin requested a review from tomas-langer September 12, 2023 15:46

tvallin self-assigned this Sep 12, 2023

oracle-contributor-agreement bot added the OCA Verified All contributors have signed the Oracle Contributor Agreement. label Sep 12, 2023

tvallin changed the title ~~4.x: metrics and openapi endpoints shoudl be authorized by default~~ 4.x: metrics and openapi endpoints should be authorized by default Sep 12, 2023

tvallin marked this pull request as draft September 14, 2023 09:19

tvallin force-pushed the metric-openapi-authorized branch from a0b0485 to 0265f44 Compare September 14, 2023 10:13

tvallin marked this pull request as ready for review September 14, 2023 16:13

tvallin force-pushed the metric-openapi-authorized branch from bcc9a40 to 34e6a49 Compare September 19, 2023 14:51

tomas-langer previously requested changes Sep 21, 2023

View reviewed changes

tvallin force-pushed the metric-openapi-authorized branch from 12700ea to 741c5e0 Compare September 26, 2023 14:39

barchetta requested a review from romain-grecourt September 27, 2023 15:51

tvallin force-pushed the metric-openapi-authorized branch from afebe02 to edfcfec Compare September 27, 2023 16:00

barchetta linked an issue Sep 27, 2023 that may be closed by this pull request

4.x: metrics and openapi endpoints shoudl be authorized by default #7439

Closed

romain-grecourt previously approved these changes Sep 27, 2023

View reviewed changes

metrics and openapi endpoint authorized

aab69ec

Signed-off-by: tvallin <thibault.vallin@oracle.com>

romain-grecourt dismissed their stale review via aab69ec September 27, 2023 18:06

romain-grecourt force-pushed the metric-openapi-authorized branch from edfcfec to aab69ec Compare September 27, 2023 18:06

romain-grecourt previously approved these changes Sep 27, 2023

View reviewed changes

fix failing test

e091491

Signed-off-by: tvallin <thibault.vallin@oracle.com>

tvallin dismissed romain-grecourt’s stale review via e091491 September 27, 2023 19:04

register SecureHandler on the path

51b19ac

romain-grecourt approved these changes Sep 27, 2023

View reviewed changes

romain-grecourt merged commit 0650b0a into helidon-io:main Sep 27, 2023
12 checks passed

tvallin deleted the metric-openapi-authorized branch September 28, 2023 08:04

barchetta mentioned this pull request Oct 13, 2023

4.x: Server Features #7777

Merged

Captain1653 mentioned this pull request Apr 9, 2024

[4.x] SecurityPreMatchingFilter is overriding the SecurityContext when using webserver security #7510

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

4.x: metrics and openapi endpoints should be authorized by default #7572

4.x: metrics and openapi endpoints should be authorized by default #7572

tvallin commented Sep 12, 2023 •

edited

tvallin commented Sep 27, 2023

4.x: metrics and openapi endpoints should be authorized by default #7572

4.x: metrics and openapi endpoints should be authorized by default #7572

Conversation

tvallin commented Sep 12, 2023 • edited

Description

Documentation

tvallin commented Sep 27, 2023

tvallin commented Sep 12, 2023 •

edited