Skip to content
This repository has been archived by the owner on Nov 4, 2024. It is now read-only.

feat: upgrade to edx-drf-extensions 9.1.2 #4092

Conversation

robrap
Copy link
Contributor

@robrap robrap commented Jan 8, 2024

9.1.2 refactors ENABLE_FORGIVING_JWT_COOKIES to
use username match to compare the session user
with the JWT cookie user.

For details, see:
openedx/edx-drf-extensions#425

This is part of the rollout of:
edx/edx-arch-experiments#429

⛔️ MAIN BRANCH WARNING! 2U EMPLOYEES must make branches against the 2u/main BRANCH

  • I have checked the branch to which I would like to merge.

⛔️ DEPRECATION WARNING

This repository is deprecated and in maintainence-only operation while we work on a replacement, please see this announcement for more information.

Although we have stopped integrating new contributions, we always appreciate security disclosures and patches sent to [email protected]

Anyone internally merging to this repository is expected to release and monitor their changes; if you are not able to do this DO NOT MERGE, please coordinate with someone who can to ensure that the changes are released.

Required Testing

  • Before deploying this change, complete a purchase in the stage environment.
    (^ We can remove that manual check once REV-2624 is done and the corresponding e2e test runs again)

Description

Describe what this pull request changes, and why these changes were made. How will these changes affect other people, installations of edx, etc.?
Please include links to any relevant ADRs, design artifacts, and decision documents. Make sure to document the rationale behind significant changes in the repo, per OEP-19, and can be
linked here.

Useful information to include:

  • Which edX user roles will this change impact? Common user roles are "Learner", "Course Author", "Developer", and "Operator".
  • Include screenshots for changes to the UI (ideally, both "before" and "after" screenshots, if applicable).
  • Provide links to the description of corresponding configuration changes. Remember to correctly annotate these changes.

Supporting information

Link to other information about the change, such as Jira issues, GitHub issues, or Discourse discussions.
Be sure to check they are publicly readable, or if not, repeat the information here.

Testing instructions

Please provide detailed step-by-step instructions for testing this change; how did YOU test this change?

Other information

Include anything else that will help reviewers and consumers understand the change.

  • Does this change depend on other changes elsewhere?
  • Any special concerns or limitations? For example: deprecations, migrations, OpenEdx vs. edx.org differences, development vs. production environment differences, security, or accessibility.

9.1.2 refactors ENABLE_FORGIVING_JWT_COOKIES to
use username match to compare the session user
with the JWT cookie user.

For details, see:
openedx/edx-drf-extensions#425

This is part of the rollout of:
edx/edx-arch-experiments#429
@robrap robrap requested a review from a team as a code owner January 8, 2024 21:40
@christopappas christopappas merged commit 2550023 into openedx-unsupported:2u/main Jan 9, 2024
10 checks passed
@robrap robrap deleted the robrap/upgrade-edx-drf-extensions-9.1.2 branch January 10, 2024 20:54
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants