Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide ACL token on client requests #3416

Merged
merged 1 commit into from
Oct 19, 2017
Merged

Provide ACL token on client requests #3416

merged 1 commit into from
Oct 19, 2017

Conversation

DingoEatingFuzz
Copy link
Contributor

@DingoEatingFuzz DingoEatingFuzz commented Oct 19, 2017
edited
Loading

Rebased off of #3413

This adds the X-Nomad-Token header to requests for allocation stats. However, adding a custom header to a cross-origin request invokes an OPTIONS preflight, which Nomad doesn't handle until #3414 merges.

meirish
meirish reviewed Oct 19, 2017
View reviewed changes
ui/app/controllers/settings/tokens.js Outdated

secret: computed.reads('token.secret'),

tokenIsValid: false,
tokenIsInvalid: false,
tokenRecord: null,

resetStore() {
this.get('store').unloadAll();
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

dang that is a big 🔨 (but I get why it's necessary) - are models unique across tokens or is there also a risk of id collisions here?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No risk of collisions. Also no risk of leaking anything the user didn't at least have prior access to. It's just a Do The Right Thing™ change. If the token doesn't give access then it shouldn't be shown.

meirish
meirish approved these changes Oct 19, 2017
View reviewed changes
Copy link
Contributor

@meirish meirish left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍

@DingoEatingFuzz DingoEatingFuzz force-pushed the b-ui-provide-acl-token-on-client-requests branch from d55f989 to 30806f9 Compare October 19, 2017 02:48
@DingoEatingFuzz DingoEatingFuzz merged commit adddd8f into master Oct 19, 2017
@DingoEatingFuzz DingoEatingFuzz deleted the b-ui-provide-acl-token-on-client-requests branch October 19, 2017 03:08
@notnoop notnoop mentioned this pull request Nov 12, 2019
Merged
@github-actions
Copy link

I'm going to lock this pull request because it has been closed for 120 days ⏳. This helps our maintainers find and focus on the active contributions.
If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Mar 20, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@meirish meirish meirish approved these changes

Assignees
No one assigned
Labels
theme/ui
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@DingoEatingFuzz @meirish