Page MenuHomePhabricator
Differential D15695

Allow public users to make intracluster API requests
ClosedPublic
Actions

Authored by epriestley on Apr 13 2016, 11:29 AM.
Tags
None
Referenced Files
F13043974: D15695.diff
Wed, Apr 17, 3:01 PM
Unknown Object (File)
Tue, Apr 9, 11:29 AM
Unknown Object (File)
Tue, Apr 2, 7:59 PM
Unknown Object (File)
Tue, Apr 2, 7:58 PM
Unknown Object (File)
Fri, Mar 29, 7:57 PM
Unknown Object (File)
Wed, Mar 27, 5:17 PM
Unknown Object (File)
Wed, Mar 27, 5:39 AM
Unknown Object (File)
Wed, Mar 27, 5:38 AM
View All Files
Subscribers
None

Details

Reviewers
chad
Maniphest Tasks
T10784: Deploy secure002.phacility.net
Commits
rP99be132ea21e: Allow public users to make intracluster API requests
Summary

Ref T10784. On secure, logged-out users currently can't browse repositories when cluster/service mode is enabled because they aren't permitted to make intracluster requests.

We don't allow totally public external requests (they're hard to rate limit and users might write bots that polled feed.query or whatever which we'd have no way to easily disable) but it's fine to allow intracluster public requests.

Test Plan

Browsed a clustered repository while logged out locally.

Diff Detail

Repository
rP Phabricator
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

epriestley updated this revision to Diff 37816.Apr 13 2016, 11:29 AM
epriestley retitled this revision from to Allow public users to make intracluster API requests.
epriestley updated this object.
epriestley edited the test plan for this revision. (Show Details)
epriestley added a reviewer: chad.
epriestley added a task: T10784: Deploy secure002.phacility.net.
epriestley mentioned this in T10784: Deploy secure002.phacility.net.Apr 13 2016, 1:22 PM
chad accepted this revision.Apr 13 2016, 1:57 PM
chad edited edge metadata.
This revision is now accepted and ready to land.Apr 13 2016, 1:57 PM
epriestley updated this revision to Diff 37820.Apr 13 2016, 2:03 PM
epriestley edited edge metadata.
  • Slightly cleaner diff that puts more logic in canEstablishAPISessions().
Closed by commit rP99be132ea21e: Allow public users to make intracluster API requests (authored by epriestley, committed by epriestley). · Explain WhyApr 13 2016, 7:51 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
src/
applications/
conduit/
controller/
17 lines
people/
storage/
13 lines

Diff 37831

View Options

src/applications/conduit/controller/PhabricatorConduitAPIController.php

Loading...
View Options

src/applications/people/storage/PhabricatorUser.php

Loading...
Phabricator · Built by Phacility