fix: remove checks when x-auth-token is missing (#3121)

77c4d715 · Keshav Prasad · GitHub · 27b66774 · 77c4d715
Unverified Commit 77c4d715 authored 3 years ago by Keshav Prasad Committed by GitHub 3 years ago
Hide whitespace changes
Inline Side-by-side

Showing

with 12 additions and 0 deletions
+12 -0
--- a/kubernetes/opa/analytics/policies.rego
+++ b/kubernetes/opa/analytics/policies.rego
@@ -28,6 +28,10 @@ getDataExhaustRequest {
  not http_request.headers["x-authenticated-userid"]
 }

+getDataExhaustRequest {
+  not http_request.headers["x-authenticated-user-token"]
+}
+
 listDataExhaustRequest {
  acls := ["listDataExhaustRequest"]
  roles := ["ORG_ADMIN", "REPORT_ADMIN", "CONTENT_CREATOR", "COURSE_MENTOR", "PROGRAM_MANAGER", "PROGRAM_DESIGNER"]
@@ -46,6 +50,10 @@ listDataExhaustRequest {
  not http_request.headers["x-authenticated-userid"]
 }

+listDataExhaustRequest {
+  not http_request.headers["x-authenticated-user-token"]
+}
+
 submitDataExhaustRequest {
  acls := ["submitDataExhaustRequest"]
  roles := ["ORG_ADMIN", "REPORT_ADMIN", "CONTENT_CREATOR", "COURSE_MENTOR"]
@@ -84,4 +92,8 @@ submitDataExhaustRequest {
  input.parsed_body.request.dataset in ["druid-dataset"]
  http_request.headers["x-channel-id"]
  not http_request.headers["x-authenticated-userid"]
+}
+
+submitDataExhaustRequest {
+  not http_request.headers["x-authenticated-user-token"]
 }
\ No newline at end of file