Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Enable ESP to invoke Firebase Security rules. #54

Merged
merged 22 commits into from
Feb 2, 2017
Merged

Enable ESP to invoke Firebase Security rules. #54

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
22 commits
Select commit Hold shift + click to select a range
348f061
Enable ESP to invoke Firebase Security rules.
sarvaniv Jan 26, 2017
6339697
Address code review comments.
sarvaniv Jan 27, 2017
13caf68
Address code review comments
sarvaniv Jan 27, 2017
b0e48c7
Remove some debug logs
sarvaniv Jan 27, 2017
6f10a20
Add proto file to capture TestRulesetRequest.
sarvaniv Jan 31, 2017
c6ae0fa
clang-format files
sarvaniv Jan 31, 2017
01b50bf
Resolve a merge issue with previous commit
sarvaniv Jan 31, 2017
1a6704c
Allow security rules to disabled via serverconfig
sarvaniv Feb 1, 2017
6351cfa
format file
sarvaniv Feb 1, 2017
32d0023
Addressed Wayne's review comments.
sarvaniv Feb 1, 2017
75d6e7a
Add firebase server to Server Config.
sarvaniv Feb 1, 2017
b573770
Address Lizan's review comments
sarvaniv Feb 1, 2017
9887846
Address review comments.
sarvaniv Feb 1, 2017
7a2abe7
Disable check rules service by default.
sarvaniv Feb 1, 2017
b871e40
Address more review comments.
sarvaniv Feb 2, 2017
71c0d92
Fix a check.
sarvaniv Feb 2, 2017
50955e3
Delete unwanted constant.
sarvaniv Feb 2, 2017
35a61df
Address Wayne's comments and add a simple config test.
sarvaniv Feb 2, 2017
4ef505a
Address a review comment.
sarvaniv Feb 2, 2017
9dddcac
Add negative test case for config
sarvaniv Feb 2, 2017
c35348d
Address code review
sarvaniv Feb 2, 2017
4ccc606
Remove unwanted const std::string
sarvaniv Feb 2, 2017
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 2 additions & 6 deletions contrib/endpoints/src/api_manager/check_security_rules.cc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -56,12 +56,8 @@ const char kRequest[] = "request";
const char kContentType[] = "Content-Type";
const char kApplication[] = "application/json";

const std::string GetFirebaseServer(const context::RequestContext &context) {
return context.service_context()
->config()
->server_config()
->api_check_security_rules_config()
.firebase_server();
const std::string &GetFirebaseServer(const context::RequestContext &context) {
return context.service_context()->config()->GetFirebaseServer();
}

void SetProtoValue(const std::string &key,
Expand Down
4 changes: 4 additions & 0 deletions contrib/endpoints/src/api_manager/config.cc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -513,5 +513,9 @@ void Config::SetJwksUri(const string &issuer, const string &jwks_uri,
}
}

const std::string &Config::GetFirebaseServer() {
return server_config_->api_check_security_rules_config().firebase_server();
}

} // namespace api_manager
} // namespace google
3 changes: 3 additions & 0 deletions contrib/endpoints/src/api_manager/config.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -78,6 +78,9 @@ class Config {
void SetJwksUri(const std::string &issuer, const std::string &jwks_uri,
bool openid_valid);

// Get the Firebase server from Server config
const std::string &GetFirebaseServer();

private:
GOOGLE_DISALLOW_EVIL_CONSTRUCTORS(Config);

Expand Down
17 changes: 17 additions & 0 deletions contrib/endpoints/src/api_manager/config_test.cc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -870,6 +870,23 @@ TEST(Config, TestCorsDisabled) {
ASSERT_EQ(nullptr, method1);
}

TEST(Config, TestFirebaseServerCheck) {
MockApiManagerEnvironmentWithLog env;

static const char server_config[] = R"(
api_check_security_rules_config {
firebase_server: "https://myfirebaseserver.com/"
}
)";

std::unique_ptr<Config> config =
Config::Create(&env, kServiceNameConfig, server_config);
ASSERT_TRUE(config);

auto server = config->GetFirebaseServer();
ASSERT_EQ(server, "https://myfirebaseserver.com/");
}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

could you add a test case with a non-empty server_config, but no api_check_security_rules_config.


} // namespace

} // namespace api_manager
Expand Down
3 changes: 2 additions & 1 deletion contrib/endpoints/src/api_manager/context/service_context.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -66,7 +66,8 @@ class ServiceContext {
}

bool IsRulesCheckEnabled() const {
return RequireAuth() && config_->server_config() &&
return RequireAuth() && service().apis_size() > 0 &&
config_->server_config() &&
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can we call config->GEtFirebaseServer()?

config_->server_config()->has_api_check_security_rules_config() &&
!config_->server_config()
->api_check_security_rules_config()
Expand Down