rust/hyperswitch
1
0
Fork 0
mirror of https://github.com/juspay/hyperswitch.git synced 2025-11-01 19:42:27 +08:00
Code Issues Packages Projects Releases Wiki Activity

chore: enable partial auth as a feature flag (#5711)

Browse Source
This commit is contained in:
Nishant Joshi
2024-09-02 12:44:40 +05:30
committed by GitHub
parent e4f1fbc5a5
commit c03587f9c6
5 changed files with 20 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
crates/router/Cargo.toml
View File

@ -9,7 +9,7 @@ readme = "README.md"
license.workspace = true license.workspace = true
[features] [features]
default = ["kv_store", "stripe", "oltp", "olap", "accounts_cache", "dummy_connector", "payouts", "payout_retry", "retry", "frm", "tls", "v1"] default = ["kv_store", "stripe", "oltp", "olap", "accounts_cache", "dummy_connector", "payouts", "payout_retry", "retry", "frm", "tls", "v1", "partial-auth"]
olap = ["hyperswitch_domain_models/olap", "storage_impl/olap", "scheduler/olap", "api_models/olap", "dep:analytics"] olap = ["hyperswitch_domain_models/olap", "storage_impl/olap", "scheduler/olap", "api_models/olap", "dep:analytics"]
tls = ["actix-web/rustls-0_22"] tls = ["actix-web/rustls-0_22"]
email = ["external_services/email", "scheduler/email", "olap"] email = ["external_services/email", "scheduler/email", "olap"]

3
crates/router/src/configs/defaults.rs
View File

@ -11225,6 +11225,9 @@ impl Default for super::settings::ApiKeys {
// context used for blake3 // context used for blake3
#[cfg(feature = "partial-auth")] #[cfg(feature = "partial-auth")]
checksum_auth_context: String::new().into(), checksum_auth_context: String::new().into(),
#[cfg(feature = "partial-auth")]
enable_partial_auth: false,
} }
} }
} }

5
crates/router/src/configs/secrets_transformers.rs
View File

@ -123,6 +123,9 @@ impl SecretsHandler for settings::ApiKeys {
.get_secret(api_keys.checksum_auth_key.clone()) .get_secret(api_keys.checksum_auth_key.clone())
.await?; .await?;
#[cfg(feature = "partial-auth")]
let enable_partial_auth = api_keys.enable_partial_auth;
Ok(value.transition_state(|_| Self { Ok(value.transition_state(|_| Self {
hash_key, hash_key,
#[cfg(feature = "email")] #[cfg(feature = "email")]
@ -132,6 +135,8 @@ impl SecretsHandler for settings::ApiKeys {
checksum_auth_key, checksum_auth_key,
#[cfg(feature = "partial-auth")] #[cfg(feature = "partial-auth")]
checksum_auth_context, checksum_auth_context,
#[cfg(feature = "partial-auth")]
enable_partial_auth,
})) }))
} }
} }

3
crates/router/src/configs/settings.rs
View File

@ -669,6 +669,9 @@ pub struct ApiKeys {
#[cfg(feature = "partial-auth")] #[cfg(feature = "partial-auth")]
pub checksum_auth_key: Secret<String>, pub checksum_auth_key: Secret<String>,
#[cfg(feature = "partial-auth")]
pub enable_partial_auth: bool,
} }
#[derive(Debug, Deserialize, Clone, Default)] #[derive(Debug, Deserialize, Clone, Default)]

8
crates/router/src/services/authentication.rs
View File

@ -443,6 +443,14 @@ where
request_headers: &HeaderMap, request_headers: &HeaderMap,
state: &A, state: &A,
) -> RouterResult<(AuthenticationData, AuthenticationType)> { ) -> RouterResult<(AuthenticationData, AuthenticationType)> {
let enable_partial_auth = state.conf().api_keys.get_inner().enable_partial_auth;
// This is a early return if partial auth is disabled
// Preventing the need to go through the header extraction process
if !enable_partial_auth {
return self.0.authenticate_and_fetch(request_headers, state).await;
}
let report_failure = || { let report_failure = || {
metrics::PARTIAL_AUTH_FAILURE.add(&metrics::CONTEXT, 1, &[]); metrics::PARTIAL_AUTH_FAILURE.add(&metrics::CONTEXT, 1, &[]);
}; };