Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: Fix reqPath for bypass check for verify EP #1789

Merged
merged 1 commit into from
Oct 11, 2024

Conversation

angelolamonaca
Copy link
Contributor

@angelolamonaca angelolamonaca commented Oct 5, 2024

What kind of change does this PR introduce?

Fix reqPath for verify check bypass test

What is the current behavior?

We are experiencing lot of 403 responses from /v1/verify EP. Supabase is returning "invalid or expired OTP". Correcting this test maybe will raise the cause of our problems. I did not setup the project on my machine, someone can run the test and check if it passes also on verify EP?

What is the new behavior?

Test is correct.

Additional context

Add any other context or screenshots.

@angelolamonaca angelolamonaca requested a review from a team as a code owner October 5, 2024 07:02
@angelolamonaca
Copy link
Contributor Author

angelolamonaca commented Oct 5, 2024

Hopefully helps to fix https://github.com/orgs/supabase/discussions/29686
I did not setup the project on my machine, someone can run the test and check if it passes?

@coveralls
Copy link

Pull Request Test Coverage Report for Build 11191305734

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 57.967%

Totals Coverage Status
Change from base Build 11165238010: 0.0%
Covered Lines: 9342
Relevant Lines: 16116

💛 - Coveralls

@hf
Copy link
Contributor

hf commented Oct 10, 2024

Hey could you open a support ticket at https://supabase.help so we can dig into this a bit more. Feel free to reference this comment so you get to talk to the team directly.

@angelolamonaca
Copy link
Contributor Author

Already done, and original issue was fixed.

Bug was implemented in this commit, removing the strings.ToLower function call on the email
1af203f#diff-1bee429deb4821de838762a5cce72a874991d044408007a85e1f988e59e0c0c4L566

The fix was implemented here:
2e9b144

Anyway this test presents a typo, so it's worth merging this PR.

Copy link
Contributor

@cstockton cstockton left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good, thank you @angelolamonaca

@J0 J0 changed the title Fix reqPath for bypass check for verify EP fix: Fix reqPath for bypass check for verify EP Oct 11, 2024
@J0 J0 merged commit 646dc66 into supabase:master Oct 11, 2024
4 checks passed
cstockton pushed a commit that referenced this pull request Oct 15, 2024
🤖 I have created a release *beep* *boop*
---


##
[2.163.0](v2.162.2...v2.163.0)
(2024-10-15)


### Features

* add mail header support via `GOTRUE_SMTP_HEADERS` with `$messageType`
([#1804](#1804))
([99d6a13](99d6a13))
* add MFA for WebAuthn
([#1775](#1775))
([8cc2f0e](8cc2f0e))
* configurable email and sms rate limiting
([#1800](#1800))
([5e94047](5e94047))
* mailer logging ([#1805](#1805))
([9354b83](9354b83))
* preserve rate limiters in memory across configuration reloads
([#1792](#1792))
([0a3968b](0a3968b))


### Bug Fixes

* add twilio verify support on mfa
([#1714](#1714))
([aeb5d8f](aeb5d8f))
* email header setting no longer misleading
([#1802](#1802))
([3af03be](3af03be))
* enforce authorized address checks on send email only
([#1806](#1806))
([c0c5b23](c0c5b23))
* fix `getExcludedColumns` slice allocation
([#1788](#1788))
([7f006b6](7f006b6))
* Fix reqPath for bypass check for verify EP
([#1789](#1789))
([646dc66](646dc66))
* inline mailme package for easy development
([#1803](#1803))
([fa6f729](fa6f729))

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

5 participants