Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Aut 2578/use common headers in all services #1635

Merged
merged 20 commits into from
May 22, 2024
Merged

Aut 2578/use common headers in all services #1635

merged 20 commits into from
May 22, 2024

Conversation

BeckaL
Copy link
Contributor

@BeckaL BeckaL commented May 21, 2024
edited

What

Switches all services over to send common security headers, as part of the cloudfront initiative.

How to review

  1. Code Review commit by commit

Related PRs

This has already been done for a few services, e.g. #1620

@BeckaL BeckaL force-pushed the AUT-2578/use-common-headers-in-all-services branch 6 times, most recently from 6214cc8 to 64354ea Compare May 21, 2024 11:36
@BeckaL BeckaL marked this pull request as ready for review May 21, 2024 14:35
@BeckaL BeckaL requested review from a team as code owners May 21, 2024 14:35
andrew-moores
andrew-moores previously approved these changes May 21, 2024
View reviewed changes
BeckaL added 18 commits May 21, 2024 15:47
@BeckaL
AUT-2578: Convert account interventions service to use common headers
2fcbd27 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert account recovery service to use common headers
e7f2a88 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert mfa service to use common headers:
5b1b2a2 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert verify mfa service to use common headers
3c300b3 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert update profile service to use common headers
e353aeb 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert check reauth service to use common headers
d727620 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert reset password check email service to use common he…
c3ad876 
…aders

This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert enter email service to use common headers
9a6fd77 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert verify code service to use common headers
0b05f63 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert send notification service to use common headers
fad709e 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert create password service to use common headers
6e01a4e 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert doc checking app service to use common headers
2472393 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert proce identity service to use common headers
703de32 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Convert reset password service to use common headers
6bee150 
This means that we submit txma security headers in requests to the backend.

Note that the interface of the reset password service specifies an isForcedPassword param, which wasn't specified on the implementation. Making this change required us to add this parameter too otherwise our tests would not compile. However, the isForcedPasswordReset parameter is unused which is a small bug in our service which we'll fix subsequently
@BeckaL
AUT-2578: Convert authorize service to use common headers
6cad783 
This means that we submit txma security headers in requests to the backend.
@BeckaL
BAU: rename check-email-fraud-block-service in line with conventions
edf09e0 
Make casing consistent with other files
@BeckaL
AUT-2578: Convert check email fraud block service to use common headers
fe89a0d 
This means that we submit txma security headers in requests to the backend.
@BeckaL
AUT-2578: Remove old getRequestConfig function
c68e438 
All internal requests are now converted to the new getInternalRequestConfigWithSecurityHeaders function, which sets security headers. Therefore, this function is now redundant and can be removed.
@BeckaL
AUT-2578: Remove unused helper function
bee9eb4 
This is no longer required, as all services now expect the version of headers with the security keys
@BeckaL
AUT-2578: Remove ip from verify code service arguments
4726215 
The x-forwarded-for header is now set using the common headers library by passing the request object through, so we no longer need to separately pass the ip through to the config function
@BeckaL BeckaL force-pushed the AUT-2578/use-common-headers-in-all-services branch from 64354ea to 4726215 Compare May 21, 2024 15:02
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented May 21, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
100.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

@BeckaL BeckaL merged commit 20a7a10 into main May 22, 2024
4 checks passed
@BeckaL BeckaL deleted the AUT-2578/use-common-headers-in-all-services branch May 22, 2024 08:54
@BeckaL BeckaL mentioned this pull request May 22, 2024
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andrew-moores andrew-moores andrew-moores approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@BeckaL @andrew-moores