Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

signature authentication for public links #1590

Merged
merged 1 commit into from
Mar 26, 2021
Merged

signature authentication for public links #1590

merged 1 commit into from
Mar 26, 2021

Conversation

C0rby
Copy link
Contributor

@C0rby C0rby commented Mar 26, 2021

Implemented the mechanism proposed here: cs3org/cs3apis#110.
The signature authentication is limited to downloads.

@C0rby C0rby requested a review from labkode as a code owner March 26, 2021 14:33
@update-docs
Copy link

update-docs bot commented Mar 26, 2021

Thanks for opening this pull request! The maintainers of this repository would appreciate it if you would create a changelog item based on your changes.

@C0rby C0rby requested review from ishank011 and refs March 26, 2021 14:33
@C0rby C0rby force-pushed the public-link-signature branch from 1446ee5 to de48538 Compare March 26, 2021 14:39
@micbar
Copy link
Member

micbar commented Mar 26, 2021

@ishank011 we would like to bring that into the release. Could you do a fastlane 🏎️ review?

@C0rby C0rby force-pushed the public-link-signature branch from de48538 to 775cfc0 Compare March 26, 2021 15:38
ishank011
ishank011 suggested changes Mar 26, 2021
View reviewed changes
Copy link
Contributor

@ishank011 ishank011 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@C0rby you're returning the password instead of the sign in the getter methods.

internal/grpc/services/publicshareprovider/publicshareprovider.go Outdated Show resolved Hide resolved
internal/grpc/services/publicstorageprovider/publicstorageprovider.go Outdated Show resolved Hide resolved
pkg/cbox/publicshare/sql/sql.go Show resolved Hide resolved
pkg/cbox/publicshare/sql/sql.go Outdated
switch {
case auth.Password != "":
return checkPasswordHash(auth.Password, pw)
case auth.Signature != publicshare.Signature{}:
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are you sure this condition isn't true when auth.Signature is nil?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

auth.Signature can't be nil.

signature authentication for public links
e0e0250 
Implemented the mechanism proposed here: cs3org/cs3apis#110.
The signature authentication is limited to downloads.
@C0rby C0rby force-pushed the public-link-signature branch from 775cfc0 to e0e0250 Compare March 26, 2021 16:18
@ishank011 ishank011 merged commit e8a00d9 into cs3org:master Mar 26, 2021
@C0rby C0rby deleted the public-link-signature branch March 26, 2021 17:05
@C0rby C0rby mentioned this pull request Mar 26, 2021
Merged
@fschade fschade mentioned this pull request Mar 29, 2021
Closed
17 tasks
ffurano pushed a commit to ffurano/reva that referenced this pull request Apr 19, 2021
@C0rby
signature authentication for public links (cs3org#1590)
3b4ae2e
ffurano pushed a commit to ffurano/reva that referenced this pull request Apr 20, 2021
@C0rby
signature authentication for public links (cs3org#1590)
ab6ee18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ishank011 ishank011 ishank011 approved these changes

@labkode labkode Awaiting requested review from labkode

@refs refs Awaiting requested review from refs

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@C0rby @micbar @ishank011