-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
update deprecated dep version #3343
Conversation
…ations Forward options in prepareForTokenInvalidation
Currently any `currentUserLiteral` routes when accessed with a bad token throw a 500 due to a SQL error that is raised because `Model.findById` is invoked with `id={currentUserLiteral}` (`id=me` in our case) when the url rewrite fails. This commit changes the token middleware to return 401 Not Authorized when the client is requesting a currentUserLiteral route without a valid access token.
…r-literal-2x Fix user-literal rewrite for anonymous requests
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM once tests pass
i searched through the repo, didn't find the file requires
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
WAIT....why it suddenly goes to 2.x branch lol.
3c527fb
to
52d3fae
Compare
This PR doesn't look correct. Why is there so many changes? |
2.x-latest branch is for release use, to backport commit to LB2.x version, we cherry pick the commit to branch 2.x, not 2.x-latest. |
52d3fae
to
3c527fb
Compare
3c527fb
to
50f4d87
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please change it to point to Master
branch instead of 2.x
oops.. sorry... This PR was supposed to be for |
Description
Some of the dependencies in loopback has deprecated and one of them indicated upgrading to newer version
to avoid a RegExp DoS issue
.Related issues
https://github.com/strongloop-internal/scrum-apex/issues/126
Checklist
guide