SONAR-8503 Make WS api/users/identity_providers accessible without authentication

author Julien Lancelot <julien.lancelot@sonarsource.com>

Tue, 6 Dec 2016 11:13:48 +0000 (12:13 +0100)

committer Stas Vilchik <vilchiks@gmail.com>

Wed, 7 Dec 2016 13:36:18 +0000 (14:36 +0100)
author Julien Lancelot <julien.lancelot@sonarsource.com>
Tue, 6 Dec 2016 11:13:48 +0000 (12:13 +0100)
committer Stas Vilchik <vilchiks@gmail.com>
Wed, 7 Dec 2016 13:36:18 +0000 (14:36 +0100)
diff --git a/it/it-tests/src/test/java/it/user/ForceAuthenticationTest.java b/it/it-tests/src/test/java/it/user/ForceAuthenticationTest.java

index b614374e6c767f08358d05b5f1c12ce2e549c529..d03f7291c8659afcad361fbe38c7c68fa37c4244 100644 (file)
--- a/it/it-tests/src/test/java/it/user/ForceAuthenticationTest.java
+++ b/it/it-tests/src/test/java/it/user/ForceAuthenticationTest.java
@@ -99,6 +99,7 @@ public class ForceAuthenticationTest {
      verifyPathDoesNotRequiresAuthentication("/api/system/db_migration_status", GET);
      verifyPathDoesNotRequiresAuthentication("/api/system/status", GET);
      verifyPathDoesNotRequiresAuthentication("/api/system/migrate_db", POST);
+    verifyPathDoesNotRequiresAuthentication("/api/users/identity_providers", GET);
    }
  
    @Test
diff --git a/server/sonar-server/src/main/java/org/sonar/server/authentication/UserSessionInitializer.java b/server/sonar-server/src/main/java/org/sonar/server/authentication/UserSessionInitializer.java

index df21619b05ba4e5fe5fe82e4b111f4b9aa6c0b52..af14f73165f699d4e09543ad7fff025db7d1b70f 100644 (file)
--- a/server/sonar-server/src/main/java/org/sonar/server/authentication/UserSessionInitializer.java
+++ b/server/sonar-server/src/main/java/org/sonar/server/authentication/UserSessionInitializer.java
@@ -65,6 +65,7 @@ public class UserSessionInitializer {
      "/sessions/*",
      "/api/system/db_migration_status", "/api/system/status", "/api/system/migrate_db",
      "/api/server/index", "/api/server/setup", "/api/server/version",
+    "/api/users/identity_providers",
      LOGIN_URL, LOGOUT_URL, VALIDATE_URL);
  
    private static final UrlPattern URL_PATTERN = UrlPattern.builder()
diff --git a/server/sonar-server/src/test/java/org/sonar/server/authentication/UserSessionInitializerTest.java b/server/sonar-server/src/test/java/org/sonar/server/authentication/UserSessionInitializerTest.java

index 6c878793baa1d74125cd357cbb4e31a372e77a64..94acef3059f5d70ff1983908811c8d9514a746f4 100644 (file)
--- a/server/sonar-server/src/test/java/org/sonar/server/authentication/UserSessionInitializerTest.java
+++ b/server/sonar-server/src/test/java/org/sonar/server/authentication/UserSessionInitializerTest.java
@@ -110,6 +110,7 @@ public class UserSessionInitializerTest {
      assertPathIsIgnored("/api/server/index");
      assertPathIsIgnored("/api/server/setup");
      assertPathIsIgnored("/api/server/version");
+    assertPathIsIgnored("/api/users/identity_providers");
  
      // exclude static resources
      assertPathIsIgnored("/css/style.css");
author	Julien Lancelot <julien.lancelot@sonarsource.com>
	Tue, 6 Dec 2016 11:13:48 +0000 (12:13 +0100)
committer	Stas Vilchik <vilchiks@gmail.com>
	Wed, 7 Dec 2016 13:36:18 +0000 (14:36 +0100)
it/it-tests/src/test/java/it/user/ForceAuthenticationTest.java		patch \| blob \| history
server/sonar-server/src/main/java/org/sonar/server/authentication/UserSessionInitializer.java		patch \| blob \| history
server/sonar-server/src/test/java/org/sonar/server/authentication/UserSessionInitializerTest.java		patch \| blob \| history