Registrar ip restriction on every request

2025-07-30 06:26:15 +02:00 · 2023-08-04 13:43:02 +03:00 · 2023-08-04 13:43:02 +03:00 · 7863322c9d
commit 7863322c9d
parent b86fac03b5
4 changed files with 7 additions and 6 deletions
--- a/app/controllers/repp/v1/base_controller.rb
+++ b/app/controllers/repp/v1/base_controller.rb
@ -9,6 +9,7 @@ module Repp
      before_action :set_locale
      before_action :validate_webclient_ca
      before_action :validate_api_user_cert
+      before_action :check_registrar_ip_restriction
      before_action :check_api_ip_restriction
      before_action :set_paper_trail_whodunnit

--- a/app/controllers/repp/v1/registrar/auth_controller.rb
+++ b/app/controllers/repp/v1/registrar/auth_controller.rb
@ -2,9 +2,9 @@ module Repp
  module V1
    module Registrar
      class AuthController < BaseController
-        before_action :check_registrar_ip_restriction, only: :index
        before_action :validate_webclient_user_cert, only: :index
        skip_before_action :authenticate_user, only: :tara_callback
+        skip_before_action :check_registrar_ip_restriction, only: :tara_callback
        skip_before_action :check_api_ip_restriction, only: :tara_callback
        skip_before_action :validate_api_user_cert, only: :tara_callback

--- a/test/integration/repp/v1/accounts/switch_user_test.rb
+++ b/test/integration/repp/v1/accounts/switch_user_test.rb
@ -53,8 +53,8 @@ class ReppV1AccountsSwitchUserTest < ActionDispatch::IntegrationTest
  end

  def test_returns_error_response_if_throttled
-    ENV["shunter_default_threshold"] = '1'
-    ENV["shunter_enabled"] = 'true'
+    ENV['shunter_default_threshold'] = '1'
+    ENV['shunter_enabled'] = 'true'

    new_user = users(:api_goodnames)
    new_user.update(identity_code: '1234')
@ -71,7 +71,7 @@ class ReppV1AccountsSwitchUserTest < ActionDispatch::IntegrationTest
    assert_response :bad_request
    assert_equal json[:code], 2502
    assert response.body.include?(Shunter.default_error_message)
-    ENV["shunter_default_threshold"] = '10000'
-    ENV["shunter_enabled"] = 'false'
+    ENV['shunter_default_threshold'] = '10000'
+    ENV['shunter_enabled'] = 'false'
  end
 end
--- a/test/integration/repp/v1/base_test.rb
+++ b/test/integration/repp/v1/base_test.rb
@ -67,7 +67,7 @@ class ReppV1BaseTest < ActionDispatch::IntegrationTest

    Repp::V1::BaseController.stub_any_instance(:webclient_request?, true) do
      Repp::V1::BaseController.stub_any_instance(:validate_webclient_ca, true) do
-        get repp_v1_registrar_auth_index_path, headers: @auth_headers.merge!({ 'Request-IP' => whiteip.ipv4 })
+        get repp_v1_contacts_path, headers: @auth_headers.merge!({ 'Request-IP' => whiteip.ipv4 })
      end
    end