rhafer
commented
5 days ago @kobergj I guess this can be closed?
Closed kobergj closed 4 days ago
rhafer
commented
5 days ago @kobergj I guess this can be closed?
The gateway service panics when the reva token is not valid. This is because all grpc endpoints on gateway are unprotected. Two steps to fix it properly:
ContextMustGetUserin gateway and callContextGetUserinstead. Return an error if the user is not available.UnprotectedEndpointsmethod of gateway service to return only specific endpoints, not all of them (not in scope of this ticket)