Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

API to refresh access token api for user #136

Merged
merged 1 commit into from
Feb 24, 2021
Merged

API to refresh access token api for user #136

merged 1 commit into from
Feb 24, 2021

Conversation

sm43
Copy link
Member

@sm43 sm43 commented Nov 18, 2020
edited
Loading

This adds implementation for API to refresh access token for user. This
requires user refresh token to be passed to get a new access token.

Submitter Checklist

These are the criteria that every PR should meet, please check them off as you
review them:

See the contribution guide for more details.

@tekton-robot tekton-robot added the size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. label Nov 18, 2020
@sm43 sm43 changed the title Api to refresh access token api API to refresh access token api for user Nov 18, 2020
@tekton-robot tekton-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Nov 23, 2020
@tekton-robot tekton-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Dec 10, 2020
@tekton-robot tekton-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Dec 24, 2020
@tekton-robot tekton-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jan 4, 2021
@tekton-robot tekton-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jan 14, 2021
@tekton-robot tekton-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jan 25, 2021
@tekton-robot tekton-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jan 25, 2021
@tekton-robot tekton-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jan 25, 2021
PuneetPunamiya
PuneetPunamiya reviewed Feb 16, 2021
View reviewed changes
api/design/auser.go Outdated
@@ -0,0 +1,57 @@
// Copyright © 2020 The Tekton Authors.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should it be 2021 ??

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yep

PuneetPunamiya
PuneetPunamiya reviewed Feb 16, 2021
View reviewed changes
api/design/auser.go Outdated
Header("refreshToken:Authorization")

Response(StatusOK)
Response("internal-error", StatusInternalServerError)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are we missing invalid authorization code error ??

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why do we need invalid authorization code error ? this is not login api

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Then why are we mentioning it above ??

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ohh.. willl remove it :P

PuneetPunamiya
PuneetPunamiya reviewed Feb 16, 2021
View reviewed changes
api/pkg/service/user/user.go Outdated
@@ -0,0 +1,130 @@
// Copyright © 2020 The Tekton Authors.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same as above

sm43
sm43 commented Feb 16, 2021
View reviewed changes
api/design/auser.go Outdated
var _ = Service("user", func() {
Description("The user service exposes endpoint to get user specific specs")

Error("invalid-code", ErrorResult, "Invalid Authorization code")
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not needed

@sm43 sm43 force-pushed the refresh-access-token-api branch 2 times, most recently from 9a1c3ad to a05a0f0 Compare February 22, 2021 10:10
Adds an API to refresh User access token
29a4462 
This adds an API to refresh access token for user. This requires user
refresh token to be passed to get a new access token.

Signed-off-by: Shivam Mukhade <[email protected]>
@pratap0007
Copy link
Contributor

/lgtm

@tekton-robot tekton-robot added the lgtm Indicates that a PR is ready to be merged. label Feb 23, 2021
PuneetPunamiya
PuneetPunamiya reviewed Feb 23, 2021
View reviewed changes
api/pkg/service/user/user.go
return userScopes, nil
}

func createChecksum(token string) string {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you please add a unit test for this

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do we need a separate test? this is being tested with the API as we store it in db and check the db record.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In db we just check if we have checksum, what I think is passing the token it should return the checksum is what this function does and hence I think we need to test it

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yeah but before checking in db it creates the checksum

PuneetPunamiya
PuneetPunamiya reviewed Feb 23, 2021
View reviewed changes
api/design/user.go
Description("The user service exposes endpoint to get user specific specs")

Error("invalid-token", ErrorResult, "Invalid User token")
Error("invalid-scopes", ErrorResult, "Invalid User scope")
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think we have used this error in the implementation of the api

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It is being by the auth service while verifying jwt

@piyush-garg
Copy link
Contributor

/lgtm

@PuneetPunamiya
Copy link
Member

/approve
/meow

@tekton-robot
Copy link

@PuneetPunamiya: cat image

In response to this:

/approve
/meow

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@tekton-robot
Copy link

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: PuneetPunamiya

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@tekton-robot tekton-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Feb 24, 2021
@tekton-robot tekton-robot merged commit 2e33359 into tektoncd:master Feb 24, 2021
@PuneetPunamiya
Copy link
Member

/woof

@tekton-robot
Copy link

@PuneetPunamiya: dog image

In response to this:

/woof

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@sm43 sm43 deleted the refresh-access-token-api branch April 15, 2021 14:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@PuneetPunamiya PuneetPunamiya PuneetPunamiya left review comments

@pratap0007 pratap0007 Awaiting requested review from pratap0007

@vdemeester vdemeester Awaiting requested review from vdemeester

Assignees

@piyush-garg piyush-garg

@pratap0007 pratap0007

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. lgtm Indicates that a PR is ready to be merged. size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@sm43 @pratap0007 @piyush-garg @PuneetPunamiya @tekton-robot