Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(proxy) iterator to act on consumer, not on credential #2424

Merged
merged 1 commit into from
Apr 21, 2017
Merged

fix(proxy) iterator to act on consumer, not on credential #2424

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 3 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,9 @@
- Prevent an upstream or legitimate internal error in the load balancing code
from throwing a Lua-land error as well.
[#2327](https://github.com/Mashape/kong/pull/2327)
- Ensure consumer based plugins run if the consumer was set without a
credential.
[#2424](https://github.com/Mashape/kong/pull/2424)
- Plugins:
- hmac: Better handling of invalid base64-encoded signatures. Previously Kong
would return an HTTP 500 error. We now properly return HTTP 403 Forbidden.
Expand Down
2 changes: 1 addition & 1 deletion kong/core/plugins_iterator.lua
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -73,7 +73,7 @@ local function iter_plugins_for_req(loaded_plugins, access_or_cert_ctx)
local plugin_configuration

-- Search API and Consumer specific, or consumer specific
local consumer_id = (ctx.authenticated_credential or empty).consumer_id
local consumer_id = (ctx.authenticated_consumer or empty).id
if consumer_id and plugin.schema and not plugin.schema.no_consumer then
plugin_configuration = load_plugin_configuration(ctx.api.id, consumer_id, plugin.name)
if not plugin_configuration then
Expand Down
34 changes: 34 additions & 0 deletions spec/02-integration/05-proxy/03-plugins_triggering_spec.lua
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,6 +17,9 @@ describe("Plugins triggering", function()
key = "secret2",
consumer_id = consumer2.id
})
local consumer3 = assert(helpers.dao.consumers:insert {
username = "anonymous"
})

-- Global configuration
assert(helpers.dao.apis:insert {
Expand Down Expand Up @@ -73,6 +76,28 @@ describe("Plugins triggering", function()
}
})

-- API with anonymous configuration
local api3 = assert(helpers.dao.apis:insert {
name = "api3",
hosts = { "api3.com" },
upstream_url = "http://mockbin.com"
})
assert(helpers.dao.plugins:insert {
name = "key-auth",
config = {
anonymous = consumer3.id,
},
api_id = api3.id,
})
assert(helpers.dao.plugins:insert {
name = "rate-limiting",
consumer_id = consumer3.id,
api_id = api3.id,
config = {
hour = 5,
}
})

assert(helpers.start_kong())
client = helpers.proxy_client()
end)
Expand Down Expand Up @@ -126,4 +151,13 @@ describe("Plugins triggering", function()
assert.res_status(200, res)
assert.equal("4", res.headers["x-ratelimit-limit-hour"])
end)
it("checks anonymous consumer specific configuration", function()
local res = assert(client:send {
method = "GET",
path = "/status/200",
headers = { Host = "api3.com" }
})
assert.res_status(200, res)
assert.equal("5", res.headers["x-ratelimit-limit-hour"])
end)
end)