File tree Expand file tree Collapse file tree
resources/localstack/s3/core/operators
test/java/com/uid2/admin/auth Expand file tree Collapse file tree Original file line number Diff line number Diff line change @@ -21,4 +21,4 @@ GHSA-72hv-8253-57qq exp:2026-09-01
2121# gateway) so anonymous external attackers cannot reach the netty epoll socket directly;
2222# LB-level connection limits and idle timeouts further cap the blast radius. CVSS impact is
2323# Availability only (C:N/I:N/A:H). Tracking via UID2-7035; revisit on vert.x 5 migration.
24- CVE-2026-42577 exp:2026-06-08
24+ CVE-2026-42577 exp:2026-09-11
Original file line number Diff line number Diff line change 66
77 <groupId >com.uid2</groupId >
88 <artifactId >uid2-admin</artifactId >
9- <version >6.13.39-alpha-247 -SNAPSHOT</version >
9+ <version >6.13.39-alpha-248 -SNAPSHOT</version >
1010
1111 <properties >
1212 <project .build.sourceEncoding>UTF-8</project .build.sourceEncoding>
1818 <junit-jupiter .version>5.11.2</junit-jupiter .version>
1919 <uid2-shared .version>11.4.21-alpha-349-SNAPSHOT</uid2-shared .version>
2020 <okta-jwt .version>0.5.10</okta-jwt .version>
21- <netty .version>4.1.133 .Final</netty .version>
21+ <netty .version>4.1.135 .Final</netty .version>
2222 <image .version>${project.version} </image .version>
2323 </properties >
2424
Original file line number Diff line number Diff line change 88@ Getter
99public enum OktaCustomScope {
1010 SS_PORTAL ("uid2.admin.ss-portal" , Role .SHARING_PORTAL ),
11+ EUID_SS_PORTAL ("euid.admin.ss-portal" , Role .SHARING_PORTAL ),
1112 SECRET_ROTATION ("uid2.admin.secret-rotation" , Role .SECRET_ROTATION ),
1213 SITE_SYNC ("uid2.admin.site-sync" , Role .PRIVATE_OPERATOR_SYNC ),
1314 METRICS_EXPORT ("uid2.admin.metrics-export" , Role .METRICS_EXPORT ),
Original file line number Diff line number Diff line change 128128 "key_hash" : " rx3SYxt2PdnIIbhGMc0Cue3/JTk9WwyDiMMOp5WiU6pXbdkhjZ+BxgIChzMMZeLqAi/E4G5XZHMFnOe8Zzx3jg==" ,
129129 "key_salt" : " 0L8h9CSPfDFEHurZZ33OOogd26zSjApBTWLmYHtauC8=" ,
130130 "key_id" : " UID2-O-L-127-pDqph"
131+ },
132+ {
133+ "key" : " UID2-O-L-998-d1sabledKeyForE2ETestOnly00000000000000000000=" ,
134+ "name" : " Disabled Operator (E2E)" ,
135+ "contact" : " Disabled Operator (E2E)" ,
136+ "protocol" : " trusted" ,
137+ "created" : 1618873215 ,
138+ "disabled" : true ,
139+ "roles" : [
140+ " OPERATOR"
141+ ],
142+ "site_id" : 998 ,
143+ "operator_type" : " PRIVATE" ,
144+ "key_hash" : " PyhHif4ptfrwvk6tFo7da/OR4TeQlejhUKvIvseMD1F9Wz0jTaWt0DfrKNEmdYvl7C0CxmEWbIT2wY+2kXoQOw==" ,
145+ "key_salt" : " AAECAwQFBgcICQoLDA0ODxAREhMUFRYXGBkaGxwdHh8=" ,
146+ "key_id" : " UID2-O-L-998-d1sab"
131147 }
132148]
Original file line number Diff line number Diff line change 11package com .uid2 .admin .auth ;
22
3+ import com .uid2 .shared .auth .Role ;
34import org .junit .jupiter .api .Assertions ;
5+ import org .junit .jupiter .api .Test ;
46import org .junit .jupiter .params .ParameterizedTest ;
57import org .junit .jupiter .params .provider .Arguments ;
68import org .junit .jupiter .params .provider .MethodSource ;
@@ -24,4 +26,11 @@ private static Stream<Arguments> testFromNameData() {
2426 public void testFromName (final String name , final OktaCustomScope scope ) {
2527 Assertions .assertEquals (scope , OktaCustomScope .fromName (name ));
2628 }
29+
30+ @ Test
31+ void euidSsPortalScopeIsRecognised () {
32+ OktaCustomScope scope = OktaCustomScope .fromName ("euid.admin.ss-portal" );
33+ Assertions .assertNotNull (scope );
34+ Assertions .assertEquals (Role .SHARING_PORTAL , scope .getRole ());
35+ }
2736}
You can’t perform that action at this time.
0 commit comments