[SERVER-77105] Disable AuthorizationContract in non-test mode Created: 12/May/23 Updated: 29/Oct/23 Resolved: 06/Jun/23 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 7.1.0-rc0, 7.0.0-rc3 |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Mark Benvenuto | Assignee: | Adrian Gonzalez Montemayor |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | neweng, perf-server-security | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||
| Assigned Teams: |
Server Security
|
||||
| Backwards Compatibility: | Fully Compatible | ||||
| Backport Requested: |
v7.0
|
||||
| Sprint: | Security 2023-06-12 | ||||
| Participants: | |||||
| Description |
|
AuthorizationContract exists to validate, in test mode, that the API conforms to the contract specified in IDL. These checks are largely disabled in production code but we should go further and disable the accounting in AuthorizationContract also. For instance, there is no need to take the mutex in AuthorizationContract::addAccessCheck if we are never going to verify the contract. |
| Comments |
| Comment by Githook User [ 06/Jun/23 ] |
|
Author: {'name': 'Adrian Gonzalez', 'email': 'adriangonzalezmontemayor@gmail.com', 'username': 'adriangzz'}Message: |
| Comment by Githook User [ 05/Jun/23 ] |
|
Author: {'name': 'Adrian Gonzalez', 'email': 'adriangonzalezmontemayor@gmail.com', 'username': 'adriangzz'}Message: |