Open kirkkwang opened 4 months ago
@kirkkwang Does this need to be QA'd? If so, could you please include testing instructions? Thanks!
@ShanaLMoore Got it, added some instructions.
Tested by sending the curl request from my terminal to pals knapsack staging.
The request did not have an API key, so I was denied:
Request was successful:
To whoever is QA'ing this, please contact me on slack so I can set up your user with an API key
Confirmed Not Authorized without the key at https://demo.palni-palci-staging.notch8.cloud/sword/service_document .
Confirmed successful service document with an authorized key. The Content-type
header does not seem to affect anything, but that is non-critical.
This gets deployed with the knapsack cutover
Story
Currently, WillowSword is unprotected and allows anyone to deposit. We must implement authorization before rolling this feature out.
https://github.com/CottageLabs/willow_sword/wiki/Enabling-Authorization-In-Willow-Sword
Acceptance Criteria
Testing Instructions
In your terminal send this request:
You should see and error because no API key was sent with the request.
See Kirk for API-key, and retest with the API-key, it should now succeed.