Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow unauthenticated access when Authorization is disabled and to Health Probe #927

Merged
merged 4 commits into from
Aug 4, 2020
Merged

Allow unauthenticated access when Authorization is disabled and to Health Probe #927

merged 4 commits into from
Aug 4, 2020

Conversation

mrzzy
Copy link
Collaborator

@mrzzy mrzzy commented Aug 4, 2020
edited
Loading

What this PR does / why we need it:
Allow unauthenticated requests when only authentication is enabled:

  • Allows "optional authentication" which is needed when transition users to authentication.
  • Forced authentication is only enforced when authorization is enabled.

Add exceptions for unauthenticated access to the health probe.

Which issue(s) this PR fixes:

Fixes #

Does this PR introduce a user-facing change?:

Authentication allows unauthenticated requests unless Authorization is also enabled.
Feast now allows unauthenticated access to its health probes.

@mrzzy mrzzy added compat/breaking Breaking user-facing change kind/bug and removed needs-kind size/M labels Aug 4, 2020
@mrzzy mrzzy removed the compat/breaking Breaking user-facing change label Aug 4, 2020
@mrzzy
Copy link
Collaborator Author

mrzzy commented Aug 4, 2020

/hold

@feast-ci-bot
Copy link
Collaborator

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: mrzzy, woop

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@woop
Copy link
Member

woop commented Aug 4, 2020

/lgtm

@mrzzy
Copy link
Collaborator Author

mrzzy commented Aug 4, 2020

/unhold

@mrzzy
Copy link
Collaborator Author

mrzzy commented Aug 4, 2020

/test test-end-to-end-batch

@mrzzy
Copy link
Collaborator Author

mrzzy commented Aug 4, 2020

/test test-end-to-end-batch-dataflow

@feast-ci-bot feast-ci-bot removed the lgtm label Aug 4, 2020
@feast-ci-bot
Copy link
Collaborator

New changes are detected. LGTM label has been removed.

@mrzzy
Copy link
Collaborator Author

mrzzy commented Aug 4, 2020

/test test-end-to-end-batch

@woop woop merged commit 1c85e3a into feast-dev:master Aug 4, 2020
@mrzzy mrzzy mentioned this pull request Aug 4, 2020
Merged
pyalex pushed a commit that referenced this pull request Aug 5, 2020
@mrzzy
Allow unauthenticated access when Authorization is disabled and to He…
7422618 
…alth Probe (#927)

* Config Core/Serving authentication to allow unauthenticated access to health probe.

* Allow unauthenticated requests when only authentication but not authorization is enabled.

* Fix ServingServiceOauthAuthenticationIT

* Add missing applyFeatureSet call to ServingServiceOauthAuthenticationIT
woop pushed a commit that referenced this pull request Aug 5, 2020
@mrzzy
Update v0.6.2 changelog with patch PR #927 (#931)
c05865e
mrzzy added a commit that referenced this pull request Aug 5, 2020
@mrzzy
Update v0.6.2 changelog with patch PR #927 (#931)
970f681
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@woop woop woop approved these changes

@davidheryanto davidheryanto Awaiting requested review from davidheryanto

@khorshuheng khorshuheng Awaiting requested review from khorshuheng

@pyalex pyalex Awaiting requested review from pyalex

@zhilingc zhilingc Awaiting requested review from zhilingc

Assignees

@woop woop

Labels
approved kind/bug size/M
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@mrzzy @feast-ci-bot @woop