Skip to content

SMQ-2627 - Align PATs with new architecture #3295

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
nyagamunene wants to merge 10 commits into
base: main
Choose a base branch
from
Open

SMQ-2627 - Align PATs with new architecture #3295

nyagamunene wants to merge 10 commits into from

Conversation

@nyagamunene
Copy link
Contributor

@nyagamunene nyagamunene commented Dec 18, 2025

What type of PR is this?

What does this do?

Which issue(s) does this PR fix/relate to?

Have you included tests for your changes?

Did you document any new/modified feature?

Notes

@codecov
Copy link

codecov bot commented Dec 18, 2025
edited
Loading

Codecov Report

❌ Patch coverage is 41.66667% with 21 lines in your changes missing coverage. Please review.
✅ Project coverage is 73.68%. Comparing base (59f8d4e) to head (30bd274).

Files with missing lines Patch % Lines
auth/pat.go 19.23% 21 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #3295      +/-   ##
==========================================
- Coverage   76.52%   73.68%   -2.85%     
==========================================
  Files          15      179     +164     
  Lines        1423    19701   +18278     
==========================================
+ Hits         1089    14516   +13427     
- Misses        246     4330    +4084     
- Partials       88      855     +767

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@nyagamunene nyagamunene marked this pull request as ready for review December 18, 2025 21:06
@nyagamunene nyagamunene requested a review from a team as a code owner December 18, 2025 21:06
dborovcanin
dborovcanin requested changes Dec 23, 2025
View reviewed changes
pkg/authn/authsvc/authn.go
}

if strings.HasPrefix(token, patPrefix) {
tokenType := authn.TokenType(res.GetTokenType())
Copy link
Collaborator

@dborovcanin dborovcanin Dec 23, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This creates possible misconfiguration issue. I.e. what if token prefix here and tokenType returned from the service are not the same? While we are not able to validate token - we are able to parse it locally (even if only for prefix) and we can do this verification to prevent mismatch.

channels/middleware/authorization.go Outdated
} else {
req.Operation = auth.ListOp
}
req.Operation = auth.ChannelDisconnectClientOp
Copy link
Collaborator

@dborovcanin dborovcanin Dec 23, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's stay consistent in naming, compare this to ClientConnectToChannelOp.

arvindh123
arvindh123 requested changes Dec 23, 2025
View reviewed changes
auth/pat.go
UnshareOp
PublishOp
SubscribeOp
ClientCreateOp Operation = iota + 100
Copy link
Contributor

@arvindh123 arvindh123 Dec 23, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is it possible to reuse the existing service Operations ?

Copy link
Contributor Author

@nyagamunene nyagamunene Dec 23, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we will have cyclic imports

@nyagamunene @dborovcanin
align pats with entity operations
c413add 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
fix authorization
3d2c02a 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
fix tests
04009b7 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
fix failing linter
be31175 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
update proto
44ba595 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
update proto
6b98181 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
address comments
bc48ff0 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
address comments
ca4d7fa 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
update error
784745f 
Signed-off-by: nyagamunene <[email protected]>
@nyagamunene @dborovcanin
fix failing linter
30bd274 
Signed-off-by: nyagamunene <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dborovcanin dborovcanin dborovcanin requested changes

@arvindh123 arvindh123 arvindh123 requested changes

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Feature: PAT align with new architecture

3 participants

@nyagamunene @dborovcanin @arvindh123