Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

handler: use generate secrets function as used in cmd #1674

Merged
merged 2 commits into from
Jan 6, 2020
Merged

handler: use generate secrets function as used in cmd #1674

merged 2 commits into from
Jan 6, 2020

Conversation

DennisPattmann5012
Copy link
Contributor

@DennisPattmann5012 DennisPattmann5012 commented Jan 6, 2020
edited

Proposed changes

When a client is created the client secret generation should be the same for api and cli

Checklist

  • I have read the contributing guidelines
  • I have read the security policy
  • I confirm that this pull request does not address a security vulnerability. If this pull request addresses a security
    vulnerability, I confirm that I got green light (please contact security@ory.sh) from the maintainers to push the changes.
  • I have added tests that prove my fix is effective or that my feature works
  • I have added necessary documentation within the code base (if appropriate)
  • I have documented my changes in the developer guide (if appropriate)

Further comments

While trying to test the admin interface we recognized there are no tests for the handler. With the client_create.js admin cypress test this done. Did we miss a better part to test the admin handler?

Dennis Pattmann and others added 2 commits January 6, 2020 09:59
handler: use generate secrets function as used in cmd and generate sa…
21517a2 
…me secret length like in cmd
@marcohutzsch1234
handler: test for create client
781ac6b 
If a client is being created by the api and the client_secret is not specified then the client_secret is being generated
as a random string of length 26.

Co-authored-by: Marco Hutzsch <marco.hutzsch@otto.de>
@claassistantio
Copy link

claassistantio commented Jan 6, 2020
edited

CLA assistant check
All committers have signed the CLA.

@aeneasr
Copy link
Member

aeneasr commented Jan 6, 2020

Thank you!

@aeneasr aeneasr merged commit 0aa79e5 into ory:master Jan 6, 2020
@aeneasr
Copy link
Member

aeneasr commented Jan 6, 2020

The handlers have very low test coverage because all of their dependent code is being tested somewhere else. We have some minimal tests here, but they're more or less just checking if something super unexpected happens: https://github.com/ory/hydra/blob/master/cmd/root_test.go

aeneasr pushed a commit that referenced this pull request Jan 7, 2020
@DennisPattmann5012 @aeneasr
handler: Use generate secrets function as used in cmd (#1674)
bf2f0fe 
If a client is being created by the api and the client_secret is not specified then the client_secret is being generated as a random string of length 26.
eli-zh pushed a commit to eli-zh/hydra that referenced this pull request Mar 22, 2020
@DennisPattmann5012 @eli-zh
handler: Use generate secrets function as used in cmd (ory#1674)
d4282a1 
If a client is being created by the api and the client_secret is not specified then the client_secret is being generated as a random string of length 26.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@DennisPattmann5012 @claassistantio @aeneasr