admin/origin_save: Do not modify unauthorized URLs list when rejecting (!754) · Merge requests · Platform / Development / swh-web

Antoine Lambert requested to merge generated-differential-D7398-source into generated-differential-D7398-target Mar 21, 2022

When rejecting a Save Code Now request, the submitted origin URL was automatically added to the unauthorized URLs list. But this was prolematic as a valid URL prefix could be added in that list and thus a valid request whose origin URL has that prefix would be automatically rejected.

So remove the automatic adding of origin URL in unauthorized list when rejecting a request.

Migrated from D7398 (view on Phabricator)

Admin message

admin/origin_save: Do not modify unauthorized URLs list when rejecting

Merge request reports