Skip to content
Snippets Groups Projects
Commit 9f0fbb8d authored by Stefan E. Funk's avatar Stefan E. Funk
Browse files

Removed eppn secret check for getting eppns for sids without secret because... 

Removed eppn secret check for getting eppns for sids without secret because there is nothing secret about eppns if we have the sid.
parent 28e80825
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
info.textgrid.middleware.tgauth.rbac/conf-dist/rbacSoap.conf
+ 3
0
View file @ 9f0fbb8d
<configuration> <configuration>
<!-- Secret for TG-crud onla methods (tgextra_crud) -->
<section name="crud"> <section name="crud">
<var name="secret">XXXXXXXXXX</var> <var name="secret">XXXXXXXXXX</var>
</section> </section>
<!-- WebAuth secret -->
<section name="webAuth"> <section name="webAuth">
<var name="secret">XXXXXXXXXXXXXX</var> <var name="secret">XXXXXXXXXXXXXX</var>
</section> </section>
<!-- Secret for getEPPN method (now deprecated) *fu* 20150113 -->
<section name="SIDcheck"> <section name="SIDcheck">
<var name="secret">XXXXXXXXXXXXX</var> <var name="secret">XXXXXXXXXXXXX</var>
</section> </section>
......
info.textgrid.middleware.tgauth.rbac/rbacSoap/TgExtraCrud.class.php
+ 9
6
View file @ 9f0fbb8d
...@@ -606,12 +606,14 @@ class TgExtraCrud { ...@@ -606,12 +606,14 @@ class TgExtraCrud {
$result = new StdClass(); // The return-result $result = new StdClass(); // The return-result
if ($inRequest->secret !== $this->config->getValue( "SIDcheck", "secret" ) ) { // Secret is not needed for getEPPN anymore, it is contained in any metadata anyway.
return new SoapFault( "authenticationFault", // So we do not check it! *fu* 20150113
$this->config->getValue( "errorCode", "INSUFFICIENT_ACCESS" ), // if ($inRequest->secret !== $this->config->getValue( "SIDcheck", "secret" ) ) {
get_class( $this ), // return new SoapFault( "authenticationFault",
$this->config->getValue( "errorDescription", "INSUFFICIENT_ACCESS" ) ); // $this->config->getValue( "errorCode", "INSUFFICIENT_ACCESS" ),
} // get_class( $this ),
// $this->config->getValue( "errorDescription", "INSUFFICIENT_ACCESS" ) );
// }
try { try {
$result->eppn = $this->rbac->sessionUser( $inRequest->auth ); $result->eppn = $this->rbac->sessionUser( $inRequest->auth );
...@@ -621,6 +623,7 @@ class TgExtraCrud { ...@@ -621,6 +623,7 @@ class TgExtraCrud {
get_class( $this ), get_class( $this ),
$this->config->getValue( "errorDescription", "INSUFFICIENT_ACCESS" ) ); $this->config->getValue( "errorDescription", "INSUFFICIENT_ACCESS" ) );
} }
return $result; return $result;
} }
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment