Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat! updated jwt vs session user monitoring #392

Merged
merged 1 commit into from
Oct 16, 2023
Merged

feat! updated jwt vs session user monitoring #392

merged 1 commit into from
Oct 16, 2023

Conversation

robrap
Copy link
Contributor

@robrap robrap commented Oct 13, 2023
edited
Loading

Description:

Made changes to the recent ENABLE_JWT_VS_SESSION_USER_CHECK custom attributes. Although this is technically a breaking change, skipping major release because of limited use of these attributes.

  • The jwt_auth_session_user_id attribute has been renamed to clarify that this attribute only appears in the case of a mismatch.
  • Dropped jwt_auth_and_session_user_mismatch, which is redundant to simply checking for the existence of jwt_auth_mismatch_session_user_id.
  • Updated annotations for jwt_auth_request_user_not_found, because it has proven to be a real case in Production and not just in testing.

Merge checklist:

  • All reviewers approved
  • CI build is green
  • Version bump if needed
  • Changelog record added
  • Documentation updated (not only docstrings)
  • Commits are squashed

Post merge:

  • Create a tag
  • Check new version is pushed to PyPi after tag-triggered build is
    finished.
  • Delete working branch (if not needed anymore)

@robrap robrap requested a review from feanil October 13, 2023 16:27
@robrap
feat!: updated jwt vs session user monitoring
7811fd0 
Made changes to the recent ENABLE_JWT_VS_SESSION_USER_CHECK
custom attributes. Although this is technically a breaking
change, skipping major release because of limited use of
these attributes.

- The jwt_auth_session_user_id attribute has been renamed to
  clarify that this attribute only appears in the case of a
  mismatch.
- Dropped jwt_auth_and_session_user_mismatch, which is
  redundant to simply checking for the existence of
  jwt_auth_mismatch_session_user_id.
- Updated annotations for jwt_auth_request_user_not_found,
  because it has proven to be a real case in Production
  and not just in testing.
@robrap robrap force-pushed the robrap/improve-jwt-session-monitoring branch from c9dda1c to 7811fd0 Compare October 16, 2023 15:45
@robrap robrap merged commit cfe542f into master Oct 16, 2023
7 checks passed
@robrap robrap deleted the robrap/improve-jwt-session-monitoring branch October 16, 2023 16:03
@robrap robrap mentioned this pull request Nov 6, 2023
Closed
20 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@feanil feanil feanil approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@robrap @feanil