devabhishekpal commented on PR #7268: URL: https://github.com/apache/ozone/pull/7268#issuecomment-2426194277
Hi @ivanzlenko, for the new filter it seems if we are adding tests to the `TestSecret*` testset, the filter is not triggered as the methods are being called directly and the filter doesn't take effect. We can go ahead with tests just for the filter like explicitly passing a mocked requestContext with invalid user and asserting that FORBIDDEN is thrown. But that doesn't seem to be much use. Do you have any inputs regarding this? I tried manually testing it via setting up a `ozonesecure` docker environment, but we cannot send requests via POSTMAN as the kerberos auth is not present in the local machine and docker is isolated. It keeps giving 401 error as the user itself is unauthorized and doesn't reach the admin check step. ```2024-10-21 15:14:07 2024-10-21 09:44:07,266 [qtp1078566479-63] WARN server.AuthenticationFilter: AuthenticationToken ignored: Unauthorized access ``` Inputs would be great in this regard @ivanzlenko @adoroszlai @myskov -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
