Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: use orginal url as audience for self signed jwt if scheme or host is null #642

Merged
merged 4 commits into from Apr 27, 2021
Merged

fix: use orginal url as audience for self signed jwt if scheme or host is null #642

merged 4 commits into from Apr 27, 2021

Conversation

arithmetic1728
Copy link
Collaborator

@arithmetic1728 arithmetic1728 commented Apr 26, 2021
edited

getUriForSelfSignedJWT(URI uri) is used to convert "https://compute.googleapis.com/compute/v1/projects/" to "https://compute.googleapis.com/", so if the uri's scheme or host is null (for instance when user provided an uri like compute.googleapis.com), it should return the original uri.

@arithmetic1728 arithmetic1728 requested a review from a team as a code owner April 26, 2021 17:59
@google-cla google-cla bot added the cla: yes This human has signed the Contributor License Agreement. label Apr 26, 2021
@codecov
Copy link

codecov bot commented Apr 26, 2021
edited

Codecov Report

Merging #642 (8569d35) into master (07d6cbc) will not change coverage.
The diff coverage is 100.00%.

Impacted file tree graph

@@            Coverage Diff            @@
##             master     #642   +/-   ##
=========================================
  Coverage     83.59%   83.59%           
- Complexity      604      606    +2     
=========================================
  Files            42       42           
  Lines          2712     2712           
  Branches        289      289           
=========================================
  Hits           2267     2267           
  Misses          303      303           
  Partials        142      142
Impacted Files Coverage Δ Complexity Δ
...uth/oauth2/ServiceAccountJwtAccessCredentials.java 75.30% <100.00%> (ø) 44.00 <4.00> (+2.00)

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 07d6cbc...8569d35. Read the comment docs.

chingor13
chingor13 reviewed Apr 26, 2021
View reviewed changes
Copy link
Contributor

@chingor13 chingor13 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please add more context to the PR and to the commit message that will be created for the changelog rather as to what's actually being fixed.

Also, please get Silvano's stamp on this fix as I'm not sure what the expected behavior is supposed to be.

oauth2_http/javatests/com/google/auth/oauth2/ServiceAccountJwtAccessCredentialsTest.java Outdated Show resolved Hide resolved
@chingor13 chingor13 requested a review from silvolu April 26, 2021 18:12
@arithmetic1728 arithmetic1728 changed the title fix: fix self signed jwt uri computation fix: use static url audience itself for self signed jwt uri Apr 26, 2021
@arithmetic1728 arithmetic1728 changed the title fix: use static url audience itself for self signed jwt uri fix: use orginal url as audience for self signed jwt if scheme or host is null Apr 26, 2021
@arithmetic1728 arithmetic1728 merged commit b4e6f1a into master Apr 27, 2021
@arithmetic1728 arithmetic1728 deleted the jwt_bug branch April 27, 2021 20:51
gcf-merge-on-green bot pushed a commit that referenced this pull request May 20, 2021
@release-please
chore: release 0.26.0 (#644)
db2f85a 
🤖 I have created a release \*beep\* \*boop\*
---
## [0.26.0](https://www.github.com/googleapis/google-auth-library-java/compare/v0.25.5...v0.26.0) (2021-05-20)


### Features

* add `gcf-owl-bot[bot]` to `ignoreAuthors` ([#674](https://www.github.com/googleapis/google-auth-library-java/issues/674)) ([359b20f](https://www.github.com/googleapis/google-auth-library-java/commit/359b20f24f88e09b6b104c61ca63a1b604ea64d2))
* added getter for credentials object in HttpCredentialsAdapter ([#658](https://www.github.com/googleapis/google-auth-library-java/issues/658)) ([5a946ea](https://www.github.com/googleapis/google-auth-library-java/commit/5a946ea5e0d974611f2205f468236db4b931e486))
* enable pre-emptive async oauth token refreshes ([#646](https://www.github.com/googleapis/google-auth-library-java/issues/646)) ([e3f4c7e](https://www.github.com/googleapis/google-auth-library-java/commit/e3f4c7eac0417705553ef8259599ec29fc8ad9b4))
* Returning an issuer claim on request errors ([#656](https://www.github.com/googleapis/google-auth-library-java/issues/656)) ([95d70ae](https://www.github.com/googleapis/google-auth-library-java/commit/95d70ae0f5f4c985455f913ddef14ebe75500656))


### Bug Fixes

* use orginal url as audience for self signed jwt if scheme or host is null ([#642](https://www.github.com/googleapis/google-auth-library-java/issues/642)) ([b4e6f1a](https://www.github.com/googleapis/google-auth-library-java/commit/b4e6f1a0bd17dd31edc85ed4879cea75857fd747))
---


This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please).
@arithmetic1728 arithmetic1728 mentioned this pull request Jun 29, 2021
Merged
@release-please release-please bot mentioned this pull request Jan 4, 2022
Closed
@release-please release-please bot mentioned this pull request Aug 11, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chingor13 chingor13 chingor13 left review comments

@silvolu silvolu silvolu approved these changes

@Neenu1995 Neenu1995 Neenu1995 approved these changes

Assignees
No one assigned
Labels
cla: yes This human has signed the Contributor License Agreement.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@arithmetic1728 @chingor13 @silvolu @Neenu1995