Skip to content

Log authentication process and remove dead auth_enabled configuration field #1038

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
bparees wants to merge 2 commits into from
Closed

Log authentication process and remove dead auth_enabled configuration field #1038

bparees wants to merge 2 commits into from

Conversation

@bparees
Copy link
Contributor

@bparees bparees commented Jan 21, 2026
edited by coderabbitai bot
Loading

Type of change

  • Refactor
  • New feature
  • Bug fix
  • CVE fix
  • Optimization
  • Documentation Update
  • Configuration Update
  • Bump-up service version
  • Bump-up dependent library
  • Bump-up library or tool used for development (does not change the final image)
  • CI configuration change
  • Konflux configuration change
  • Unit tests improvement
  • Integration tests improvement
  • End to end tests improvement

Tools used to create PR

Identify any AI code assistants used in this PR (for transparency and review context)

  • Assisted-by: (e.g., Claude, CodeRabbit, Ollama, etc., N/A if not used)
  • Generated by: (e.g., tool name and version; N/A if not used)

Related Tickets & Documents

  • Related Issue #
  • Closes #

Checklist before requesting a review

  • I have performed a self-review of my code.
  • PR has passed all pre-merge test jobs.
  • If it is a core feature, I have added thorough tests.

Testing

  • Please provide detailed steps to perform tests related to this code change.
  • How were the fix/results from this change verified? Please provide relevant screenshots or results.

Summary by CodeRabbit

  • Configuration Changes

    • Removed the auth_enabled field from service configuration across all documentation, examples, and test files. Authentication behavior now relies on default system settings.

  • Observability Improvements

    • Enhanced debug logging for authentication workflows, including token validation, Kubernetes integration, and authorization decision details for improved troubleshooting.

✏️ Tip: You can customize this high-level summary in your review settings.

@bparees bparees changed the title ## Description Log authentication process and remove dead auth_enabled configuration field Jan 21, 2026
@coderabbitai
Copy link
Contributor

coderabbitai bot commented Jan 21, 2026
edited
Loading

Caution

Review failed

The pull request is closed.

Walkthrough

Removed auth_enabled configuration field from ServiceConfiguration model definition, all documentation schemas (JSON, HTML, Markdown, PlantUML, OpenAPI), example YAML configurations, test configurations and assertions. Added debug logging to Kubernetes authentication validation and token extraction utilities.

Changes

Cohort / File(s) Summary
Model & Schema Definition
src/models/config.py, docs/config.json, docs/config.puml		 Removed auth_enabled: bool field from ServiceConfiguration class and corresponding schema/diagram declarations
API Documentation
docs/openapi.json, docs/openapi.md		 Removed auth_enabled field from ServiceConfiguration schema in OpenAPI spec and example /v1/config response
Configuration Reference Documentation
docs/config.html, docs/config.md, README.md		 Removed auth_enabled entries from configuration documentation tables and YAML examples
Getting Started & Deployment Guides
docs/getting_started.md, docs/deployment_guide.md		 Removed auth_enabled: false from LCS YAML configuration examples in documentation
Example Configurations
examples/lightspeed-stack*.yaml, examples/quota-limiter*.yaml, lightspeed-stack.yaml		 Removed auth_enabled field from 13 example configuration files
Development & Test Configuration Files
dev-tools/test-configs/mcp-mock-test.yaml, tests/configuration/*, tests/e2e*, tests/e2e-prow/*		 Removed auth_enabled entries from 13 test configuration YAML files
Test Model & Configuration Fixtures
tests/unit/__init__.py, tests/unit/models/config/test_*.py, tests/unit/test_configuration.py, tests/unit/utils/test_*.py		 Removed auth_enabled from test setup fixtures and configuration assertions
Test Endpoint & Feature Tests
tests/unit/app/endpoints/test_*.py, tests/integration/test_configuration.py, tests/unit/authentication/test_k8s.py		 Removed auth_enabled: False entries from setup_configuration_fixture and test assertions
Configuration Response Model
src/models/responses.py		 Removed auth_enabled: False field from ConfigurationResponse example in model_config
Authentication Logging Infrastructure
src/authentication/k8s.py, src/authentication/utils.py		 Added debug logging for TokenReview validation workflow, SAR submission/outcome, token extraction, and header validation steps

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

Suggested labels

ok-to-test

Suggested reviewers

  • tisnik
✨ Finishing touches
  • 📝 Generate docstrings

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@bparees bparees closed this Jan 21, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@bparees