Mirrors/unleash.unleash
1
0
Fork 0
mirror of https://github.com/Unleash/unleash.git synced 2024-12-22 19:07:54 +01:00
Code Issues Projects Releases Wiki Activity

chore: fix bearer token middleware signal endpoint logic (#6767)

Browse Source 
This should make it so that the `signal-endpoint` route match is
slightly less strict.
This commit is contained in:
Nuno Góis 2024-04-03 11:29:09 +01:00 committed by GitHub
parent a664a449ef
commit 86d86f58b0
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 55 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

51
src/lib/middleware/bearer-token-middleware.test.ts
View File

@ -63,4 +63,55 @@ describe('bearerTokenMiddleware', () => {
expect(req.headers.authorization).toBe(exampleSignalToken); expect(req.headers.authorization).toBe(exampleSignalToken);
}); });
it('should always run for signal endpoint, regardless of the flag', () => {
const configWithBearerTokenMiddlewareFlagDisabled = createTestConfig({
getLogger,
experimental: {
flags: {
bearerTokenMiddleware: false,
},
},
});
const middleware = bearerTokenMiddleware(
configWithBearerTokenMiddlewareFlagDisabled,
);
req.path = '/api/signal-endpoint/';
const bearerToken = `Bearer ${exampleSignalToken}`;
req.headers = { authorization: bearerToken };
middleware(req, res, next);
expect(req.headers.authorization).toBe(exampleSignalToken);
});
it('should always run for signal endpoint, regardless of the flag, supporting instance path', () => {
const configWithBearerTokenMiddlewareFlagDisabled = createTestConfig({
getLogger,
server: {
baseUriPath: '/some-test-instance',
},
experimental: {
flags: {
bearerTokenMiddleware: false,
},
},
});
const middleware = bearerTokenMiddleware(
configWithBearerTokenMiddlewareFlagDisabled,
);
req.path = '/some-test-instance/api/signal-endpoint/';
const bearerToken = `Bearer ${exampleSignalToken}`;
req.headers = { authorization: bearerToken };
middleware(req, res, next);
expect(req.headers.authorization).toBe(exampleSignalToken);
});
}); });

6
src/lib/middleware/bearer-token-middleware.ts
View File

@ -2,15 +2,17 @@ import type { Request, Response, NextFunction } from 'express';
import type { IUnleashConfig } from '../types'; import type { IUnleashConfig } from '../types';
export const bearerTokenMiddleware = ({ export const bearerTokenMiddleware = ({
server,
getLogger, getLogger,
flagResolver, flagResolver,
}: Pick<IUnleashConfig, 'getLogger' | 'flagResolver'>) => { }: Pick<IUnleashConfig, 'server' | 'getLogger' | 'flagResolver'>) => {
const logger = getLogger('/middleware/bearer-token-middleware.ts'); const logger = getLogger('/middleware/bearer-token-middleware.ts');
logger.debug('Enabling bearer token middleware'); logger.debug('Enabling bearer token middleware');
const baseUriPath = server.baseUriPath || '';
return (req: Request, _: Response, next: NextFunction) => { return (req: Request, _: Response, next: NextFunction) => {
if ( if (
req.path.startsWith('/api/signal-endpoint/') || req.path.startsWith(`${baseUriPath}/api/signal-endpoint/`) ||
flagResolver.isEnabled('bearerTokenMiddleware') flagResolver.isEnabled('bearerTokenMiddleware')
) { ) {
const authHeader = req.headers.authorization; const authHeader = req.headers.authorization;