feat(auth): Tenant token #2096
feat(auth): Tenant token #2096
Conversation
ManyTheFish
force-pushed
the
tenant-token
branch
2 times, most recently
from
67e2261
to
87a030a
Compare
ManyTheFish
force-pushed
the
tenant-token
branch
from
87a030a
to
e20fc5a
Compare
ManyTheFish
force-pushed
the
tenant-token
branch
from
27c99ab
to
14c5e84
Compare
| @@ -50,19 +50,23 @@ impl<P: Policy + 'static, D: 'static + Clone> FromRequest for GuardedData<P, D> | |||
| Some("Bearer") => { | |||
There was a problem hiding this comment.
Does this mean that bearer (without the capitalization) will not be detected?
There was a problem hiding this comment.
Only "Bearer" written with a capital is accepted, with exactly one space between it and the following key.
There was a problem hiding this comment.
uhm that is not http compliant: https://stackoverflow.com/a/5259004
There was a problem hiding this comment.
@MarinPostma @Kerollmops, "Bearer" is not the Header name but a part of the Value, the header name is "Authentication".
There was a problem hiding this comment.
I don't know if it's the good RFC, but, here is a pseudo regex matching the bearer auth:
The OAuth 2.0 Authorization Framework: Bearer Token Usage
There was a problem hiding this comment.
If it is a real issue can you "Reference in a new issue", please? If it is not, let's merge that and pray!
There was a problem hiding this comment.
There is no issue here, I don't understand your point. 😞
|
(I'm investigating why we have a failure with our CI on another PR) bors try |
tryBuild succeeded: |
|
bors try |
tryBuild succeeded: |
Make meilisearch support JWT authentication signed with meilisearch API keys using HS256, HS384 or HS512 algorithms. Related spec: meilisearch/specifications#89 Fix #1991
ManyTheFish
force-pushed
the
tenant-token
branch
from
da6659c
to
7ca647f
Compare
|
bors try |
tryBuild succeeded: |
| pub async fn get_all_stats(&self, index_filter: &Option<Vec<String>>) -> Result<Stats> { | ||
| pub async fn get_all_stats(&self, search_rules: &SearchRules) -> Result<Stats> { |
There was a problem hiding this comment.
I'll find a way to not depend on meilisearch auth here later, so that's ok for now
|
bors merge |
2096: feat(auth): Tenant token r=Kerollmops a=ManyTheFish Make meilisearch support JWT authentication signed with meilisearch API keys using HS256, HS384 or HS512 algorithms. Related spec: [specifications#89](meilisearch/specifications#89) [rendered](https://github.com/meilisearch/specifications/blob/scoped-api-keys/text/0089-tenant-tokens.md) Fix #1991 Co-authored-by: ManyTheFish <many@meilisearch.com>
|
This PR was included in a batch that successfully built, but then failed to merge into main. It will not be retried. Additional information: {"message":"1 review requesting changes and 1 approving review by reviewers with write access.","documentation_url":"https://docs.github.com/articles/about-protected-branches"} |
Make meilisearch support JWT authentication signed with meilisearch API keys
using HS256, HS384 or HS512 algorithms.
Related spec: specifications#89 rendered
Fix #1991