Skip to content

Add blueprint level auth guards to graphs, users and remote filesystems endpoints #1219

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 24, 2025
Merged

Add blueprint level auth guards to graphs, users and remote filesystems endpoints #1219

merged 1 commit into from
May 24, 2025

Conversation

ml-evs
Copy link
Member

@ml-evs ml-evs commented May 24, 2025

Previously, the graph, users and remote filesystems were locked down per-endpoint, and restricted in functionality based on the users account. This PR simply adds an extra guard that will return any request from an unverified/unauthenticated account before it even reaches the permissions logic, which should add an extra level of security.

@ml-evs ml-evs added refactoring For issues/PRs that refactor existing code/features server Python labels May 24, 2025
@cypress Cypress
Copy link

cypress bot commented May 24, 2025
edited
Loading

datalab    Run #3407

Run Properties:  status check passed Passed #3407  •  git commit be17f4dae1 ℹ️: Merge b6abd405629101c30cee5a36978dc27281ee636f into fb6f3e3a7564adc95d45a9ccd15c...
Project datalab
Branch Review ml-evs/extra-auth-guards
Run status status check passed Passed #3407
Run duration 08m 04s
Commit git commit be17f4dae1 ℹ️: Merge b6abd405629101c30cee5a36978dc27281ee636f into fb6f3e3a7564adc95d45a9ccd15c...
Committer Matthew Evans
View all properties for this run ↗︎
Test results
Tests that failed  Failures 0
Tests that were flaky  Flaky 0
Tests that did not run due to a developer annotating a test with .skip  Pending 0
Tests that did not run due to a failure in a mocha hook  Skipped 0
Tests that passed  Passing 504
View all changes introduced in this branch ↗︎

@ml-evs ml-evs force-pushed the ml-evs/extra-auth-guards branch from b0eb3ab to b6abd40 Compare May 24, 2025 18:43
@codecov Codecov
Copy link

codecov bot commented May 24, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 71.73%. Comparing base (fb6f3e3) to head (b6abd40).
⚠️ Report is 73 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #1219      +/-   ##
==========================================
+ Coverage   71.64%   71.73%   +0.09%     
==========================================
  Files          66       66              
  Lines        4468     4479      +11     
==========================================
+ Hits         3201     3213      +12     
+ Misses       1267     1266       -1
Files with missing lines Coverage Δ
pydatalab/src/pydatalab/routes/v0_1/graphs.py 77.94% <100.00%> (+1.01%) ⬆️
pydatalab/src/pydatalab/routes/v0_1/remotes.py 87.71% <100.00%> (+2.81%) ⬆️
pydatalab/src/pydatalab/routes/v0_1/users.py 91.11% <100.00%> (+0.86%) ⬆️
🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@ml-evs ml-evs merged commit 57652b8 into main May 24, 2025
17 checks passed
@ml-evs ml-evs deleted the ml-evs/extra-auth-guards branch May 24, 2025 18:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jdbocarsly jdbocarsly Awaiting requested review from jdbocarsly jdbocarsly is a code owner

@BenjaminCharmes BenjaminCharmes Awaiting requested review from BenjaminCharmes BenjaminCharmes is a code owner

Assignees
No one assigned
Labels
Python refactoring For issues/PRs that refactor existing code/features server
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@ml-evs