jonny
/
covscanrest
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

Merge branch 'local_dev_fixes' into 'main' 

Disable Kerberos and other Auths in dev profile

See merge request pct-security/covscanrest!7
openshift_inject_rte_fix
Nicholas Caughey 3 years ago
parent
865c628bb2 9d76e78393
commit
12f983cd22
2 changed files with 16 additions and 3 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 4
      src/main/java/rest/UsersResource.java
  2. 15
      src/main/resources/application.properties

4
src/main/java/rest/UsersResource.java
Unescape View File

@ -2,6 +2,7 @@ package rest;
import dto.ConnectDB;
import dto.ScanObj;
import io.quarkus.arc.profile.UnlessBuildProfile;
import io.quarkiverse.kerberos.KerberosPrincipal;
import io.quarkus.security.Authenticated;
import io.quarkus.security.identity.SecurityIdentity;
@ -19,6 +20,7 @@ import java.util.LinkedHashMap;
import java.util.Set;
import javax.ws.rs.Produces;
@UnlessBuildProfile("dev")
@Path("/testKerberos")
@Authenticated
public class UsersResource {
@ -33,4 +35,4 @@ public class UsersResource {
public String me() {
return identity.getPrincipal().getName();
}
}
}

15
src/main/resources/application.properties
Unescape View File

@ -7,8 +7,19 @@
# quarkus.hibernate-orm.database.generation=drop-and-create
%dev.quarkus.kerberos.keytab-path= HTTP_osh-pct-security-tooling.apps.ocp-c1.prod.psi.redhat.com@IPA.REDHAT.COM.keytab
%dev.quarkus.kerberos.service-principal-name= HTTP/osh-pct-security-tooling.apps.ocp-c1.prod.psi.redhat.com@IPA.REDHAT.COM
#temporary fix, we need to enable it with a working devservices setup
%dev.quarkus.kerberos.enabled=false
%dev.quarkus.security.auth.enabled-in-dev-mode=false
#Also tried
#%dev.quarkus.security.enabled=false
#%dev.quarkus.http.auth.proactive=false
#%dev.quarkus.http.auth.basic=false
#%dev.quarkus.http.auth.permission.permit1.paths=/Ping/Ping
#%dev.quarkus.http.auth.permission.permit1.policy=permit
#%dev.quarkus.http.auth.permission.permit1.methods=GET,HEAD
#%quarkus.arc.unremovable-types=io.quarkiverse.kerberos.*,io.quarkiverse.kerberos.KerberosPrincipal
#%dev.quarkus.kerberos.keytab-path= HTTP_osh-pct-security-tooling.apps.ocp-c1.prod.psi.redhat.com@IPA.REDHAT.COM.keytab
#%dev.quarkus.kerberos.service-principal-name= HTTP/osh-pct-security-tooling.apps.ocp-c1.prod.psi.redhat.com@IPA.REDHAT.COM
%stage.quarkus.openshift.name=osh
%stage.quarkus.openshift.labels.env=stage

Write Preview
Loading…
Cancel
Save