The GitHub Actions job "Required Checks" on texera.git/refactor/remove-litellm-proxy-access-control has failed. Run started by GitHub user bobbai00 (triggered by bobbai00).
Head commit for run: e291fd5a68b197a81f4db729adf33527e89ff84b / Bob Bai <[email protected]> feat(agent): authenticate agent-service requests via JWT + gateway ext_authz Phase 1 authentication for the agent service (see #5561): - agent-service: real HS256 JWT verification using the shared secret read from auth.conf (env AUTH_JWT_SECRET); a guard rejects unauthenticated REST (Bearer) and WebSocket (access-token query) requests. auth.conf is bundled into the image. - access-control-service: authorize() gains an /api/agents branch that verifies the JWT and requires REGULAR/ADMIN, returning the trusted x-user-* headers (allow-all per-agent for now; per-agent ownership is deferred to #5302). - gateways: nginx auth_request (single-node) and an Envoy SecurityPolicy (k8s) route /api/agents through the access-control-service; the agent-service deployment now receives AUTH_JWT_SECRET. - frontend: attach the JWT to every agent call (Bearer on REST, access-token on the /react WebSocket). - tests: agent-service jwt.test.ts + server.test.ts guard cases; access-control AgentAccessAuthSpec. Report URL: https://github.com/apache/texera/actions/runs/27122535358 With regards, GitHub Actions via GitBox
