Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Expired key must not authenticate the user

Download Browse

This is part of story #13667 have an expiration date associated to API AccessKey If you have an expired access key not already deleted, then this key must not authenticate the user if it's used. Change-Id: Ic4a9f51b8eaa7cb343f58ae7a67cffbad67c1fc1

+79 −13
Yannis ROSSETTO (rossettoy) 2019-08-07 15:26
Yannis ROSSETTO (rossettoy) 2019-08-07 15:53
6ff4f85c86698338d639504f5df564bb2284c0c5
4883ab5144dbc223ad7b4977ad49aedc476da904
git #tuleap/stable/6ff4f85c86698338d639504f5df564bb2284c0c5

Modified Files

Side by side diff
Inline diff
Name
M src/common/User/AccessKey/AccessKeyDAO.php +3 −3 Go to diff View file
M src/common/User/AccessKey/AccessKeyVerifier.php +20 −2 Go to diff View file
A src/common/User/AccessKey/ExpiredAccessKeyException.php +29 −0 Go to diff View file
M tests/phpunit/common/User/AccessKey/AccessKeyVerifierTest.php +27 −8 Go to diff View file