Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix creating Credentials from API #29

Closed
wants to merge 1 commit into from
Closed

Fix creating Credentials from API #29

wants to merge 1 commit into from

Conversation

agrare
Copy link
Member

@agrare agrare commented Jun 21, 2023

No description provided.

@agrare agrare added bug Something isn't working petrosian/yes? labels Jun 21, 2023
agrare
agrare commented Jun 21, 2023
View reviewed changes
app/models/manageiq/providers/workflows/automation_manager/credential.rb
allowed_params = API_ATTRIBUTES.pluck(:id)
unpermitted_params = params.keys - allowed_params
allowed_params = API_ATTRIBUTES.pluck(:id) + ["type"]
unpermitted_params = params.keys.map(&:to_s) - allowed_params
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The parameters were being passed down with symbol keys which caused all params to look unpermitted

agrare
agrare commented Jun 21, 2023
View reviewed changes
app/models/manageiq/providers/workflows/automation_manager/credential.rb
@@ -62,8 +62,8 @@ class ManageIQ::Providers::Workflows::AutomationManager::Credential < ManageIQ::
}.freeze

def self.params_to_attributes(params)
allowed_params = API_ATTRIBUTES.pluck(:id)
unpermitted_params = params.keys - allowed_params
allowed_params = API_ATTRIBUTES.pluck(:id) + ["type"]
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There is also a "type" holding the class name

Copy link
Member

@Fryguy Fryguy Jun 21, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should make sure that type is only the known types and not some random type. Not sure if that belongs here or elsewhere.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No problem validating this, but is that something we do elsewhere? I don't recall seeing that sort of check on other API payloads. We wouldn't be in this class if the type wasn't already a subclass of this one

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually no, there's no way we could get here if "type" wasn't already a valid subclass of this one https://github.com/ManageIQ/manageiq-api/blob/master/lib/services/api/authentication_service.rb#L4-L6

@agrare agrare requested review from kbrock and Fryguy June 21, 2023 18:09
@miq-bot
Copy link
Member

miq-bot commented Jun 21, 2023

Checked commit agrare@71ec2e0 with ruby 2.6.10, rubocop 1.28.2, haml-lint 0.35.0, and yamllint
1 file checked, 0 offenses detected
Everything looks fine. 🍪

@agrare agrare closed this Jun 22, 2023
@agrare agrare deleted the fix_creating_credentials_from_api branch June 22, 2023 17:58
@kbrock
Copy link
Member

kbrock commented Jun 22, 2023

fixed by ManageIQ/manageiq#22570

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kbrock kbrock Awaiting requested review from kbrock

@Fryguy Fryguy Awaiting requested review from Fryguy

Assignees
No one assigned
Labels
bug Something isn't working petrosian/yes?
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@agrare @miq-bot @kbrock @Fryguy