diff options
| author |   sebdet <sebastien.determe@intl.att.com> | 2021-04-20 18:04:50 +0200 |
|---|---|---|
| committer | sebdet <sebastien.determe@intl.att.com> | 2021-04-20 18:04:50 +0200 |
| commit | c71614e99da78d4de6015d7689078b287f21f619 (patch) | |
| tree | 04ce4d1608173608e202a8576f67078b80bdb302 /src/main/java | |
| parent | 048c655b281c0b65ecb710afb4024261d2114b9b (diff) | |
Force issue in pdp dep to raise exception
Force the pdpDeployment call to raise exception in case of issues to have a better view of the problem in the prod
Issue-ID: POLICY-3203
Signed-off-by: sebdet <sebastien.determe@intl.att.com>
Change-Id: I21ff763f9810bcfa68665f5105b0bff0e50b25ef
Diffstat (limited to 'src/main/java')
| -rw-r--r-- | src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java b/src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java index 74aeccda5..bb7b76af3 100644 --- a/src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java +++ b/src/main/java/org/onap/policy/clamp/clds/config/DefaultUserConfiguration.java @@ -73,7 +73,9 @@ public class DefaultUserConfiguration extends WebSecurityConfigurerAdapter { @Override protected void configure(HttpSecurity http) { try { - http.httpBasic().and().authorizeRequests().antMatchers("/restservices/clds/v1/user/**") + // Do no remove the csrf as recommended by Sonar otherwise Put/post will not work + // Moreover this default user class is only used by dev, on prod we use AAF and this code will be disabled + http.csrf().disable().httpBasic().and().authorizeRequests().antMatchers("/restservices/clds/v1/user/**") .authenticated().anyRequest().permitAll().and().sessionManagement() .maximumSessions(1); |