Skip to content

fix: allow for auth with activedirectory again #1061

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Jul 1, 2025
Merged

fix: allow for auth with activedirectory again #1061

merged 4 commits into from
Jul 1, 2025
+58 −19

Conversation

06kellyjac
Copy link
Contributor

@06kellyjac 06kellyjac commented Jun 25, 2025
edited
Loading

Draft because my commit signing seems to be playing up but should otherwise be ready for review.
After actually posting the PR commit signatures look fine.

Main change - allow for auth with activedirectory again

Current /login is forced to use local auth.
This change resolves this regression in a backwards compatible manner while still supporting alternative auth like OIDC.

Auth methods compatible with /login are filtered out from the git-proxy config, if there isn't one /login is essentially disabled to avoid throwing.
If there is multiple methods it'll prioritize the first.
In the future we can support multiple user & password login methods simultaneously with relevant TODOs added.

other fixes:

  • fix: make loadFromGit non-interactive
  • test: move valid url missing git repo test under our control

@06kellyjac
fix: allow for auth with activedirectory again
dc208cd 
Current /login is forced to use local auth.
This change resolves this regression in a backwards compatible manner
while still supporting alternative auth like OIDC.

Auth methods compatible with /login are filtered out from the git-proxy
config, if there isn't one /login is essentially disabled to avoid
throwing.
If there is multiple methods it'll prioritize the first.
In the future we can support multiple user & password login methods
simultaneously with relevant TODOs added.
@06kellyjac
fix: make loadFromGit non-interactive
6793fae 
loadFromGit should be sufficiently authenticated and if it isn't it's
not expected to get interactive input. Inform git not to wait for
interactive action.
This also resolves an issue in the tests where "should throw error
if repository is valid URL but not a git repository" test times out
waiting for a username.
@06kellyjac
test: move valid url missing git repo test under our control
accf223 
If we want to ensure this git repository isn't created it should be
pointed at the FINOS org, the parent of this repo currently.
In theory test-org (an org that currently exists) could add a repo
called test-project.
@netlify Netlify
Copy link

netlify bot commented Jun 25, 2025
edited
Loading

Deploy Preview for endearing-brigadeiros-63f9d0 canceled.

Name Link
🔨 Latest commit e85b3bd
🔍 Latest deploy log https://app.netlify.com/projects/endearing-brigadeiros-63f9d0/deploys/6863b48af877d20008abc97e

@github-actions github-actions bot added the fix label Jun 25, 2025
@06kellyjac
Copy link
Contributor Author

cc: @jescalada to double check this doesn't impact OIDC & also may be relevant to #1024

@06kellyjac 06kellyjac marked this pull request as ready for review June 25, 2025 15:27
@codecov Codecov
Copy link

codecov bot commented Jun 25, 2025
edited
Loading

Codecov Report

Attention: Patch coverage is 76.92308% with 6 lines in your changes missing coverage. Please review.

Project coverage is 76.78%. Comparing base (41dbc46) to head (e85b3bd).
Report is 5 commits behind head on main.

Files with missing lines Patch % Lines
src/service/routes/auth.js 76.92% 6 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #1061      +/-   ##
==========================================
+ Coverage   76.73%   76.78%   +0.04%     
==========================================
  Files          55       55              
  Lines        2244     2261      +17     
  Branches      251      251              
==========================================
+ Hits         1722     1736      +14     
- Misses        492      495       +3     
  Partials       30       30

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

06kellyjac
06kellyjac commented Jun 25, 2025
View reviewed changes
06kellyjac
06kellyjac commented Jun 25, 2025
View reviewed changes
06kellyjac
06kellyjac commented Jun 25, 2025
View reviewed changes
JamieSlome
JamieSlome approved these changes Jul 1, 2025
View reviewed changes
Copy link
Member

@JamieSlome JamieSlome left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! 🍰

@JamieSlome JamieSlome merged commit cd1dd89 into finos:main Jul 1, 2025
14 checks passed
@06kellyjac 06kellyjac deleted the fix_multi_auth branch July 1, 2025 10:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@JamieSlome JamieSlome JamieSlome approved these changes

Assignees
No one assigned
Labels
fix
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@06kellyjac @JamieSlome