diff options
author | Ola Aunrønning <olaa@verizonmedia.com> | 2022-03-14 11:32:14 +0100 |
---|---|---|
committer | Ola Aunrønning <olaa@verizonmedia.com> | 2022-03-14 11:32:14 +0100 |
commit | 065053e8efaa6941521e1ec79b7948d34d73d18e (patch) | |
tree | c1bb2f31f341fc87d57836bb95561c6fa29d3434 /controller-server | |
parent | fed4f6dddba35fe13b9d10dc79485fa7d4d97afb (diff) |
Infer managed access through assertion existence
Diffstat (limited to 'controller-server')
-rw-r--r-- | controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/application/ApplicationApiHandler.java | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/application/ApplicationApiHandler.java b/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/application/ApplicationApiHandler.java index de8f1ec7ddc..c8e16634464 100644 --- a/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/application/ApplicationApiHandler.java +++ b/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/restapi/application/ApplicationApiHandler.java @@ -413,12 +413,13 @@ public class ApplicationApiHandler extends AuditLoggingRequestHandler { } private HttpResponse accessRequests(String tenantName, HttpRequest request) { - if (controller.tenants().require(TenantName.from(tenantName)).type() != Tenant.Type.cloud) + var tenant = TenantName.from(tenantName); + if (controller.tenants().require(tenant).type() != Tenant.Type.cloud) return ErrorResponse.badRequest("Can only see access requests for cloud tenants"); var accessControlService = controller.serviceRegistry().accessControlService(); - var accessRoleInformation = accessControlService.getAccessRoleInformation(TenantName.from(tenantName)); - var preapprovedAccess = !accessRoleInformation.isSelfServe() && !accessRoleInformation.isReviewEnabled(); + var accessRoleInformation = accessControlService.getAccessRoleInformation(tenant); + var preapprovedAccess = accessControlService.getPreapprovedAccess(tenant); var slime = new Slime(); var cursor = slime.setObject(); cursor.setBool("preapprovedAccess", preapprovedAccess); |