Tapisservice

Latest version: v1.7.0

Safety actively analyzes 682457 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 3

1.6.0

Tapipy is now using `tapipy==1.6.0`

1.5.0

Fixed `ERROR: request_thread_local missing token_claims! attrs: ['__class__', .....]` logs. Was not an error.
Pruned some logs.

1.4.1

1.4.0

TapisService now using `tapipy==1.4.0`. This version overhauls the spec backend previously used for quick imports.
Spec is now read as a dictionary so small changes were implemented to change from attr notation to dict notation.
Newest openapi-spec library enforces validated object output as frozen, we override that in `utils.py` to keep
service code working as is.
We pin `sqlalchemy==1.4.48` as otherwise sqlalchemy attempts to download to 2+ which breaks tapisflask.

1.3.0

request_thread_local.request_username` is now set. Previously, `request_thread_local.username` was set equal to the token
claims `username` field, and `request_thread_local.x_tapis_user` was set equal to the `_x_tapis_user` incoming headers
that service accounts are allowed to set in order to run as other users. This meant that it was up to the services to
negotiate which username variable to use. `x_tapis_user` in that case gets ignored as only service accounts use it. From
now on services should make use of `request_username` to get either the regular token username, or if provided, the
username a service account is making a request on behalf of.
To note, this is secure. The possible issue would be if we had primary site, A, and associate site, B. There could be a
scenario where a service from B could try and run as another user on A. This behaviour is forbidden by
`tapisservice.auth.service_token_checks()`. This restricts associate sites from cross site service requests. Only the
primary site is allowed that permission.

1.2.6

Fix, one tenants section was attempting to call Tapis with resource_set=local.
Adding dev_request_url conf to divert request with said url to dev tenant.

Page 1 of 3

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.