summaryrefslogtreecommitdiffstats
path: root/src/main/java
diff options
context:
space:
mode:
authorsebdet <sebastien.determe@intl.att.com>2021-04-20 18:04:50 +0200
committersebdet <sebastien.determe@intl.att.com>2021-04-20 18:04:50 +0200
commitc71614e99da78d4de6015d7689078b287f21f619 (patch)
tree04ce4d1608173608e202a8576f67078b80bdb302 /src/main/java
parent048c655b281c0b65ecb710afb4024261d2114b9b (diff)
Force issue in pdp dep to raise exception
Force the pdpDeployment call to raise exception in case of issues to have a better view of the problem in the prod Issue-ID: POLICY-3203 Signed-off-by: sebdet <sebastien.determe@intl.att.com> Change-Id: I21ff763f9810bcfa68665f5105b0bff0e50b25ef
Diffstat (limited to 'src/main/java')
-rw-r--r--src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java4
1 files changed, 3 insertions, 1 deletions
diff --git a/src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java b/src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java
index 74aeccda5..bb7b76af3 100644
--- a/src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java
+++ b/src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java
@@ -73,7 +73,9 @@ public class DefaultUserConfiguration extends WebSecurityConfigurerAdapter {
@Override
protected void configure(HttpSecurity http) {
try {
- http.httpBasic().and().authorizeRequests().antMatchers("/restservices/clds/v1/user/**")
+ // Do no remove the csrf as recommended by Sonar otherwise Put/post will not work
+ // Moreover this default user class is only used by dev, on prod we use AAF and this code will be disabled
+ http.csrf().disable().httpBasic().and().authorizeRequests().antMatchers("/restservices/clds/v1/user/**")
.authenticated().anyRequest().permitAll().and().sessionManagement()
.maximumSessions(1);