Uploaded image for project: 'mod-codex-ekb'
  1. mod-codex-ekb
  2. MODCXEKB-98

Endpoints w/o required permissions

    XMLWordPrintable

Details

    • eHoldings Sprint 76
    • 1
    • Spitfire

    Description

      Overview

      two endpoints can be accessed w/o logging in because they don't required any permissions

      • codex-packages-sources
      • codex-instances-sources (not implemented but still)

      The permissions added as required here should be the same as those added to codex-mux. See MODCXMUX-55

      Reproducer

      codex-packages-sources

      $ curl $OKAPI/codex-packages-sources -v -H "X-Okapi-Tenant: diku" -w '\n' -H "X-Okapi-Module-Id: mod-codex-ekb-1.5.0-SNAPSHOT.95"
      *   Trying 52.72.80.49...
      * Connected to folio-testing-okapi.aws.indexdata.com (52.72.80.49) port 443 (#0)
      * found 148 certificates in /etc/ssl/certs/ca-certificates.crt
      * found 597 certificates in /etc/ssl/certs
      * ALPN, offering http/1.1
      * SSL connection using TLS1.2 / ECDHE_RSA_AES_128_GCM_SHA256
      * 	 server certificate verification OK
      * 	 server certificate status verification SKIPPED
      * 	 common name: *.aws.indexdata.com (matched)
      * 	 server certificate expiration date OK
      * 	 server certificate activation date OK
      * 	 certificate public key: RSA
      * 	 certificate version: #3
      * 	 subject: CN=*.aws.indexdata.com
      * 	 start date: Thu, 23 May 2019 00:00:00 GMT
      * 	 expire date: Tue, 23 Jun 2020 12:00:00 GMT
      * 	 issuer: C=US,O=Amazon,OU=Server CA 1B,CN=Amazon
      * 	 compression: NULL
      * ALPN, server accepted to use http/1.1
      > GET /codex-packages-sources HTTP/1.1
      > Host: folio-testing-okapi.aws.indexdata.com
      > User-Agent: curl/7.47.0
      > Accept: */*
      > X-Okapi-Tenant: diku
      > X-Okapi-Module-Id: mod-codex-ekb-1.5.0-SNAPSHOT.95
      > 
      < HTTP/1.1 200 OK
      < Date: Fri, 27 Sep 2019 17:17:30 GMT
      < Content-Type: application/json
      < Transfer-Encoding: chunked
      < Connection: keep-alive
      < X-Okapi-Trace: GET mod-authtoken-2.4.0-SNAPSHOT.57 http://10.36.1.54:9132/codex-packages-sources : 202 2859us
      < x-forwarded-for: 140.234.253.9
      < x-forwarded-proto: https
      < x-forwarded-port: 443
      < host: folio-testing-okapi.aws.indexdata.com
      < x-amzn-trace-id: Root=1-5d8e442a-9171acc47e8a9aa0878c8db4
      < user-agent: curl/7.47.0
      < accept: */*
      < x-okapi-tenant: diku
      < x-okapi-request-id: 657932/codex-packages-sources
      < x-okapi-url: http://10.36.1.54:9130
      < x-okapi-request-ip: 10.36.1.246
      < x-okapi-request-timestamp: 1569604650063
      < x-okapi-request-method: GET
      < x-okapi-permissions: []
      < x-okapi-match-path-pattern: /codex-packages-sources
      < X-Okapi-Trace: GET mod-codex-ekb-1.5.0-SNAPSHOT.95 http://10.36.1.54:9155/codex-packages-sources : 200 4478us
      < 
      {
        "sources" : [ {
          "id" : "kb",
          "name" : "mod-codex-ekb-1.5.0"
        } ]
      * Connection #0 to host folio-testing-okapi.aws.indexdata.com left intact
      }
      

      codex-instances-sources

      $ curl $OKAPI/codex-instances-sources -v -H "X-Okapi-Tenant: diku" -w '\n' -H "X-Okapi-Module-Id: mod-codex-ekb-1.5.0-SNAPSHOT.95"
      *   Trying 52.0.23.15...
      * Connected to folio-testing-okapi.aws.indexdata.com (52.0.23.15) port 443 (#0)
      * found 148 certificates in /etc/ssl/certs/ca-certificates.crt
      * found 597 certificates in /etc/ssl/certs
      * ALPN, offering http/1.1
      * SSL connection using TLS1.2 / ECDHE_RSA_AES_128_GCM_SHA256
      * 	 server certificate verification OK
      * 	 server certificate status verification SKIPPED
      * 	 common name: *.aws.indexdata.com (matched)
      * 	 server certificate expiration date OK
      * 	 server certificate activation date OK
      * 	 certificate public key: RSA
      * 	 certificate version: #3
      * 	 subject: CN=*.aws.indexdata.com
      * 	 start date: Thu, 23 May 2019 00:00:00 GMT
      * 	 expire date: Tue, 23 Jun 2020 12:00:00 GMT
      * 	 issuer: C=US,O=Amazon,OU=Server CA 1B,CN=Amazon
      * 	 compression: NULL
      * ALPN, server accepted to use http/1.1
      > GET /codex-instances-sources HTTP/1.1
      > Host: folio-testing-okapi.aws.indexdata.com
      > User-Agent: curl/7.47.0
      > Accept: */*
      > X-Okapi-Tenant: diku
      > X-Okapi-Module-Id: mod-codex-ekb-1.5.0-SNAPSHOT.95
      > 
      < HTTP/1.1 501 Not Implemented
      < Date: Fri, 27 Sep 2019 17:18:15 GMT
      < Transfer-Encoding: chunked
      < Connection: keep-alive
      < X-Okapi-Trace: GET mod-authtoken-2.4.0-SNAPSHOT.57 http://10.36.1.54:9132/codex-instances-sources : 202 2844us
      < x-forwarded-for: 140.234.253.9
      < x-forwarded-proto: https
      < x-forwarded-port: 443
      < host: folio-testing-okapi.aws.indexdata.com
      < x-amzn-trace-id: Root=1-5d8e4457-a6f9e8703cd2748079942f20
      < user-agent: curl/7.47.0
      < accept: */*
      < x-okapi-tenant: diku
      < x-okapi-request-id: 591650/codex-instances-sources
      < x-okapi-url: http://10.36.1.54:9130
      < x-okapi-request-ip: 10.36.10.9
      < x-okapi-request-timestamp: 1569604695285
      < x-okapi-request-method: GET
      < x-okapi-permissions: []
      < x-okapi-match-path-pattern: /codex-instances-sources
      < X-Okapi-Trace: GET mod-codex-ekb-1.5.0-SNAPSHOT.95 http://10.36.1.54:9155/codex-instances-sources : 501 62655us
      < 
      * Connection #0 to host folio-testing-okapi.aws.indexdata.com left intact
      

      TestRail: Results

        Attachments

          Issue Links

            Activity

              People

                andrii.paias Andrii Paias
                cmcnally Craig McNally
                Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved:

                  TestRail: Runs

                    TestRail: Cases