Device Access Validator #117

joe94 · 2020-01-17T01:21:45Z

Changes introduced in this PR:

JWT Validation for device registration is done through bascule now
Device Access Component

TODO:

contains (a must for partnerIDs), intersect and equals might be enough for this first PR. Let me know if that's not the case.
Update metrics accordingly
Unit test updates

joe94 · 2020-01-17T01:42:47Z

this fixes #116

joe94 · 2020-01-31T21:27:20Z

fixes #106

kristinapathak

Looks good so far! We've talked about some stuff and I left some comments in the code.

checks.go

deviceAccess.go

kristinapathak · 2020-04-14T20:02:35Z

deviceAccess.go

+// values presented by API users against those of the device
+type deviceAccessCheck struct {
+	Name string
+	//UserCredentialPath is the Sep-delimited path to the credential value


Please add a space between the // and the beginning of the comment for easier readability (not marking all of them in this file).

deviceAccess.go

primaryHandler.go

Co-Authored-By: kristinaspring <[email protected]>

…aria into feature/deviceAccessChecks

codecov-io · 2020-04-17T22:57:56Z

Codecov Report

Merging #117 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master     #117   +/-   ##
=======================================
  Coverage   58.44%   58.44%           
=======================================
  Files          14       14           
  Lines         977      977           
=======================================
  Hits          571      571           
  Misses        397      397           
  Partials        9        9

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update d8326d9...d8326d9. Read the comment docs.

kristinapathak

Looks great! Just one tiny thing.

kristinapathak · 2020-04-25T00:00:20Z

main.go

+				// We are getting bombarded with SIGURGS due to Go1.14's new way to async preempt goroutines  https://github.com/golang/go/issues/37942
+				// Don't log as info as it will fill log with unnecessary entries


We should make an issue in other service repos to fix this there as well.

kristinapathak · 2020-04-25T00:05:05Z

primaryHandler.go

+		parsedChecks = append(parsedChecks, parsedCheck)
+	}
+
+	if config.Type == "enforce" || config.Type == "monitor" {


This code could be flatter by checking at the beginning of this function to verify that the type is "enforce" or "monitor", and returning an error if it's not either. Then, the positive case will be the one returned at the end of this function. 🙂

Good idea, thanks!

johnabass

Looks good!

joe94 added the partner-id work related to config-driven api access restriction to devices connected to XMiDT label Jan 17, 2020

joe94 force-pushed the feature/deviceAccessChecks branch from deaec22 to 21331a1 Compare March 2, 2020 21:33

joe94 added 9 commits April 8, 2020 16:23

try out possible middlewares for device access

b38a610

expand on logic that will be neede

2406240

Wiring for bascule - pending changes in connector

bbc5258

Save progress before reorg in files and unit tests

90b64e2

First attempt at organizing new code

071eea6

Add comment and sample config

f31305b

add more operations and tests

01d6f12

save Progress on work

794e696

basic operations without metrics updates

0b5ad52

joe94 force-pushed the feature/deviceAccessChecks branch from 87a2d0c to 0b5ad52 Compare April 13, 2020 19:28

joe94 self-assigned this Apr 13, 2020

joe94 changed the title ~~(Work in Progress) Device Access Validator~~ (Work in progress) Device Access Validator Apr 13, 2020

joe94 linked an issue Apr 13, 2020 that may be closed by this pull request

Validate partners for a device request #106

Closed

joe94 marked this pull request as draft April 13, 2020 19:39

kristinapathak reviewed Apr 14, 2020

View reviewed changes

joe94 and others added 10 commits April 14, 2020 17:57

Apply suggestions from code review

40b7bcd

Co-Authored-By: kristinaspring <[email protected]>

update comments and tests

2d916fd

Merge branch 'feature/deviceAccessChecks' of github.com:xmidt-org/tal…

c5c32f3

…aria into feature/deviceAccessChecks

Support raw value checks and update parsing errors

825c72d

don't log ignored SIGURGS in 1.14

b9596b8

Improve error reporting

a31018b

update config doc

db1181b

reorg files

f3eb5b6

operation tests

d1f7cc4

update metrics and configuration

3da12c6

joe94 added 7 commits April 17, 2020 16:43

simplify deviceAccessConf err handling and parsing

d51b473

various fixes + deviceAccess tests

b28c4cf

Simplify code and add unit tests

599bf39

one more test case

96d6e12

Drop response body

83601b2

don't export things unless necessary + more tests

6dd7e80

update to webpa-common PR version

d4a670d

joe94 changed the title ~~(Work in progress) Device Access Validator~~ Device Access Validator Apr 24, 2020

only export things we need

86a4d86

joe94 requested a review from johnabass April 24, 2020 16:56

joe94 marked this pull request as ready for review April 24, 2020 16:56

kristinapathak reviewed Apr 25, 2020

View reviewed changes

make deviceAccessCheck builder simpler

5208b7f

joe94 linked an issue Apr 25, 2020 that may be closed by this pull request

Many SIGURG signals sent with go1.14 #126

Closed

joe94 added 2 commits April 27, 2020 11:23

bump to latest webpa-common pr

c2cfdf7

update change log

9791bbc

johnabass approved these changes Apr 27, 2020

View reviewed changes

joe94 added 3 commits April 27, 2020 15:04

Use official webpa-common release

b2c4d99

Add release notes

a26f8d3

Only listen for signals of interest

d8326d9

joe94 merged commit e6e83c9 into master Apr 27, 2020

joe94 deleted the feature/deviceAccessChecks branch April 27, 2020 23:58

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Device Access Validator #117

Device Access Validator #117

joe94 commented Jan 17, 2020 •

edited

Loading

joe94 commented Jan 17, 2020

joe94 commented Jan 31, 2020

kristinapathak left a comment

kristinapathak Apr 14, 2020

codecov-io commented Apr 17, 2020 •

edited

Loading

kristinapathak left a comment

kristinapathak Apr 25, 2020

kristinapathak Apr 25, 2020

joe94 Apr 25, 2020

johnabass left a comment

		// We are getting bombarded with SIGURGS due to Go1.14's new way to async preempt goroutines https://github.com/golang/go/issues/37942
		// Don't log as info as it will fill log with unnecessary entries

Device Access Validator #117

Device Access Validator #117

Conversation

joe94 commented Jan 17, 2020 • edited Loading

Changes introduced in this PR:

TODO:

joe94 commented Jan 17, 2020

joe94 commented Jan 31, 2020

kristinapathak left a comment

Choose a reason for hiding this comment

kristinapathak Apr 14, 2020

Choose a reason for hiding this comment

codecov-io commented Apr 17, 2020 • edited Loading

Codecov Report

kristinapathak left a comment

Choose a reason for hiding this comment

kristinapathak Apr 25, 2020

Choose a reason for hiding this comment

kristinapathak Apr 25, 2020

Choose a reason for hiding this comment

joe94 Apr 25, 2020

Choose a reason for hiding this comment

johnabass left a comment

Choose a reason for hiding this comment

joe94 commented Jan 17, 2020 •

edited

Loading

codecov-io commented Apr 17, 2020 •

edited

Loading