cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge pull request #5406 from AntonKhorev/offline-message-oauth

Browse source 
Check if db is writable on oauth authorization pages
This commit is contained in:
Andy Allan 2024-12-17 10:39:47 +00:00 committed by GitHub
commit 8551db4c82
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 16 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
app/controllers/oauth2_authorizations_controller.rb
View file

@ -7,4 +7,6 @@ class Oauth2AuthorizationsController < Doorkeeper::AuthorizationsController
allow_all_form_action :only => :new
authorize_resource :class => false
before_action :check_database_writable
end

14
test/controllers/oauth2_authorizations_controller_test.rb
View file

@ -102,6 +102,20 @@ class Oauth2AuthorizationsControllerTest < ActionDispatch::IntegrationTest
assert_select "p", "The requested scope is invalid, unknown, or malformed."
end
def test_new_db_readonly
application = create(:oauth_application, :scopes => "write_api")
session_for(create(:user))
with_settings(:status => "database_readonly") do
get oauth_authorization_path(:client_id => application.uid,
:redirect_uri => application.redirect_uri,
:response_type => "code",
:scope => "write_api")
assert_redirected_to offline_path
end
end
def test_create
application = create(:oauth_application, :scopes => "write_api")