Page MenuHomePhabricator
Differential D15695

Allow public users to make intracluster API requests
ClosedPublic
Actions

Authored by epriestley on Apr 13 2016, 11:29 AM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, Apr 17, 3:01 PM
Unknown Object (File)
Tue, Apr 9, 11:29 AM
Unknown Object (File)
Tue, Apr 2, 7:59 PM
Unknown Object (File)
Tue, Apr 2, 7:58 PM
Unknown Object (File)
Fri, Mar 29, 7:57 PM
Unknown Object (File)
Wed, Mar 27, 5:17 PM
Unknown Object (File)
Wed, Mar 27, 5:39 AM
Unknown Object (File)
Wed, Mar 27, 5:38 AM
View All Files
Subscribers
None

Details

Reviewers
chad
Maniphest Tasks
T10784: Deploy secure002.phacility.net
Commits
rP99be132ea21e: Allow public users to make intracluster API requests
Summary

Ref T10784. On secure, logged-out users currently can't browse repositories when cluster/service mode is enabled because they aren't permitted to make intracluster requests.

We don't allow totally public external requests (they're hard to rate limit and users might write bots that polled feed.query or whatever which we'd have no way to easily disable) but it's fine to allow intracluster public requests.

Test Plan

Browsed a clustered repository while logged out locally.

Diff Detail

Repository
rP Phabricator
Branch
crepo7
Lint
Lint Passed
Unit
Tests Passed
Build Status
Buildable 11688
Build 14633: Run Core Tests
Build 14632: arc lint + arc unit

Event Timeline

epriestley updated this revision to Diff 37816.Apr 13 2016, 11:29 AM
epriestley retitled this revision from to Allow public users to make intracluster API requests.
epriestley updated this object.
epriestley edited the test plan for this revision. (Show Details)
epriestley added a reviewer: chad.
epriestley added a task: T10784: Deploy secure002.phacility.net.
epriestley mentioned this in T10784: Deploy secure002.phacility.net.Apr 13 2016, 1:22 PM
chad accepted this revision.Apr 13 2016, 1:57 PM
chad edited edge metadata.
This revision is now accepted and ready to land.Apr 13 2016, 1:57 PM
epriestley updated this revision to Diff 37820.Apr 13 2016, 2:03 PM
epriestley edited edge metadata.
  • Slightly cleaner diff that puts more logic in canEstablishAPISessions().
Closed by commit rP99be132ea21e: Allow public users to make intracluster API requests (authored by epriestley, committed by epriestley). · Explain WhyApr 13 2016, 7:51 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
src/
applications/
conduit/
controller/
17 lines
people/
storage/
13 lines

Diff 37820

View Options

src/applications/conduit/controller/PhabricatorConduitAPIController.php

Loading...
View Options

src/applications/people/storage/PhabricatorUser.php

Loading...
Phabricator · Built by Phacility