Skip to content

Commit

Permalink
rest api: Fix to Disable API authentication (#6067)
Browse files Browse the repository at this point in the history
Co-authored-by: Gary Malouf <[email protected]>
  • Loading branch information
algorandskiy and gmalouf authored Jul 15, 2024
1 parent 1493410 commit 8a44d87
Show file tree
Hide file tree
Showing 3 changed files with 29 additions and 11 deletions.
19 changes: 14 additions & 5 deletions daemon/algod/api/server/router.go
Original file line number Diff line number Diff line change
Expand Up @@ -19,10 +19,11 @@ package server

import (
"fmt"
"golang.org/x/sync/semaphore"
"net"
"net/http"

"golang.org/x/sync/semaphore"

"github.com/labstack/echo/v4"
"github.com/labstack/echo/v4/middleware"

Expand Down Expand Up @@ -74,18 +75,26 @@ func registerHandlers(router *echo.Echo, prefix string, routes lib.Routes, ctx l

// NewRouter builds and returns a new router with our REST handlers registered.
func NewRouter(logger logging.Logger, node APINodeInterface, shutdown <-chan struct{}, apiToken string, adminAPIToken string, listener net.Listener, numConnectionsLimit uint64) *echo.Echo {
if err := tokens.ValidateAPIToken(apiToken); err != nil {
logger.Errorf("Invalid apiToken was passed to NewRouter ('%s'): %v", apiToken, err)
}
// check admin token and init admin middleware
if err := tokens.ValidateAPIToken(adminAPIToken); err != nil {
logger.Errorf("Invalid adminAPIToken was passed to NewRouter ('%s'): %v", adminAPIToken, err)
}
adminMiddleware := []echo.MiddlewareFunc{
middlewares.MakeAuth(TokenHeader, []string{adminAPIToken}),
}

// check public api tokens and init public middleware
publicMiddleware := []echo.MiddlewareFunc{
middleware.BodyLimit(MaxRequestBodyBytes),
middlewares.MakeAuth(TokenHeader, []string{adminAPIToken, apiToken}),
}
if apiToken == "" {
logger.Warn("Running with public API authentication disabled")
} else {
if err := tokens.ValidateAPIToken(apiToken); err != nil {
logger.Errorf("Invalid apiToken was passed to NewRouter ('%s'): %v", apiToken, err)
}
publicMiddleware = append(publicMiddleware, middlewares.MakeAuth(TokenHeader, []string{adminAPIToken, apiToken}))

}

e := echo.New()
Expand Down
19 changes: 14 additions & 5 deletions test/e2e-go/restAPI/other/misc_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -39,12 +39,12 @@ func TestDisabledAPIConfig(t *testing.T) {
localFixture.Setup(t, filepath.Join("nettemplates", "DisableAPIAuth.json"))
defer localFixture.Shutdown()

testClient := localFixture.LibGoalClient
libgoalClient := localFixture.LibGoalClient

statusResponse, err := testClient.Status()
statusResponse, err := libgoalClient.Status()
a.NoError(err)
a.NotEmpty(statusResponse)
statusResponse2, err := testClient.Status()
statusResponse2, err := libgoalClient.Status()
a.NoError(err)
a.NotEmpty(statusResponse2)
a.True(statusResponse2.LastRound >= statusResponse.LastRound)
Expand All @@ -58,12 +58,21 @@ func TestDisabledAPIConfig(t *testing.T) {
assert.True(t, os.IsNotExist(err))

// check public api works without a token
testClient.WaitForRound(1)
url, err := localFixture.NC.ServerURL()
a.NoError(err)
testClient := client.MakeRestClient(url, "") // empty token

_, err = testClient.WaitForBlock(1)
assert.NoError(t, err)
_, err = testClient.Block(1)
assert.NoError(t, err)
_, err = testClient.Status()
a.NoError(err)

// check admin api works with the generated token
_, err = testClient.GetParticipationKeys()
_, err = libgoalClient.GetParticipationKeys()
assert.NoError(t, err)

// check admin api doesn't work with an invalid token
algodURL, err := nc.ServerURL()
assert.NoError(t, err)
Expand Down
2 changes: 1 addition & 1 deletion test/framework/fixtures/libgoalFixture.go
Original file line number Diff line number Diff line change
Expand Up @@ -390,7 +390,7 @@ func (f *LibGoalFixture) dumpLogs(filePath string) {
fmt.Fprintf(os.Stderr, "%s/%s:\n", parts[len(parts)-2], parts[len(parts)-1]) // Primary/node.log
scanner := bufio.NewScanner(file)
for scanner.Scan() {
fmt.Fprint(os.Stderr, scanner.Text())
fmt.Fprintln(os.Stderr, scanner.Text())
}
fmt.Fprintln(os.Stderr)
}
Expand Down

0 comments on commit 8a44d87

Please sign in to comment.