yujunjun/OpenMetadata
1
0
Fork 0
mirror of https://github.com/open-metadata/OpenMetadata.git synced 2025-09-07 16:11:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Do not validate bot domain (#15796)

Browse Source
This commit is contained in:
Mohit Yadav 2024-04-03 16:12:42 +05:30 committed by GitHub
parent b79e5c064b
commit daae3c48e3
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
openmetadata-service/src/main/java/org/openmetadata/service/security/JwtFilter.java
View File

@ -218,8 +218,10 @@ public class JwtFilter implements ContainerRequestFilter {
domain = StringUtils.EMPTY; domain = StringUtils.EMPTY;
} }
// validate principal domain // validate principal domain, for users
if (enforcePrincipalDomain && !domain.equals(principalDomain)) { boolean isBot =
claims.containsKey(BOT_CLAIM) && Boolean.TRUE.equals(claims.get(BOT_CLAIM).asBoolean());
if (!isBot && (enforcePrincipalDomain && !domain.equals(principalDomain))) {
throw new AuthenticationException( throw new AuthenticationException(
String.format( String.format(
"Not Authorized! Email does not match the principal domain %s", principalDomain)); "Not Authorized! Email does not match the principal domain %s", principalDomain));