Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fixes: Remove auth bypass in for HOTOSM org #1785 #1845

Merged
merged 1 commit into from
Nov 11, 2024

Conversation

Anuj-Gupta4
Copy link
Contributor

What type of PR is this? (check all applicable)

  • πŸ§‘β€πŸ’» Refactor

Related Issue

Example: Fixes #1785

Describe this PR

updated roles.check_access so it no longer grants access for hotosm

Checklist before requesting a review

@github-actions github-actions bot added the backend Related to backend code label Oct 30, 2024
@Anuj-Gupta4 Anuj-Gupta4 changed the base branch from staging to development November 8, 2024 07:42
@spwoodcock
Copy link
Member

Looks good to me!

Did you manage to test out the endpoints when different permissions are set?

@spwoodcock
Copy link
Member

spwoodcock commented Nov 8, 2024

Also, with the CI failing when using a forked repo, I probably need to rethink the setup! (no permission to push the built container image)

PRs probably shouldn't push the built image, but instead use a locally cached version for tests

@Anuj-Gupta4 Anuj-Gupta4 marked this pull request as ready for review November 11, 2024 08:38
@spwoodcock
Copy link
Member

Looks good to me!

Did you manage to test out the endpoints when different permissions are set?

No time to test this thoroughly myself unfortunately - I trust you managed to give it a good test πŸ™

Merging

@spwoodcock spwoodcock merged commit 831f055 into hotosm:development Nov 11, 2024
4 of 6 checks passed
@Anuj-Gupta4
Copy link
Contributor Author

@spwoodcock There was an issue with organisation apis that was stopping me from testing. Sujan says he has fixed it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
backend Related to backend code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Remove auth bypass in roles.check_access for HOTOSM org
2 participants