Skip to content

Deprecate camelCase parameters used by SAML APIs #73984

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Jun 23, 2021
Merged

Deprecate camelCase parameters used by SAML APIs #73984

merged 6 commits into from
Jun 23, 2021

Conversation

@ywangd
Copy link
Member

@ywangd ywangd commented Jun 10, 2021
edited
Loading

Both SAML complete logout and SAML invalidate session APIs use a camelCase request parameter, queryString, while the convention is to use snake_case parameters. This PR deprecates queryString and replaces it with query_string. It is an error to if a request specifies both of them.

Resolves: #73543

@ywangd ywangd added >deprecation :Security/Security Security issues without another label v8.0.0 v7.14.0 labels Jun 10, 2021
@ywangd ywangd requested a review from tvernum June 10, 2021 06:17
@elasticmachine elasticmachine added the Team:Security Meta label for security team label Jun 10, 2021
@elasticmachine
Copy link
Collaborator

elasticmachine commented Jun 10, 2021

Pinging @elastic/es-security (Team:Security)

@tvernum
Copy link
Contributor

tvernum commented Jun 10, 2021

Ping @elastic/kibana-security.

We're considering deprecating the current parameter you use, and switching it to snake_case.
I think we should coordinate changes, so that you can update the Kibana code in the same release and customers don't see deprecation warnings.

@azasypkin
Copy link
Member

azasypkin commented Jun 10, 2021

Thanks for the ping. Sure, we'll track this PR and update Kibana code base for 7.14 as soon as updated ES snapshot reaches our CI.

ywangd and others added 2 commits June 22, 2021 21:13
@ywangd @tvernum
Update x-pack/plugin/security/src/main/java/org/elasticsearch/xpack/s…
32e7778 
…ecurity/rest/action/saml/RestSamlCompleteLogoutAction.java

Co-authored-by: Tim Vernum <[email protected]>
@ywangd
address feedback
a2f09ca
@ywangd
Copy link
Member Author

ywangd commented Jun 22, 2021

@elasticmachine update branch

@ywangd ywangd requested a review from tvernum June 23, 2021 00:40
tvernum
tvernum approved these changes Jun 23, 2021
View reviewed changes
Copy link
Contributor

@tvernum tvernum left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@ywangd ywangd merged commit 7257dc6 into elastic:master Jun 23, 2021
ywangd added a commit to ywangd/elasticsearch that referenced this pull request Jun 23, 2021
@ywangd
Deprecate camelCase parameters used by SAML APIs (elastic#73984)
3216ed9 
Both SAML complete logout and SAML invalidate session APIs use a camelCase
request parameter, queryString, while the convention is to use snake_case
parameters. This PR deprecates queryString and replaces it with query_string.
It is an error to if a request specifies both of them.
ywangd added a commit that referenced this pull request Jun 23, 2021
@ywangd
Deprecate camelCase parameters used by SAML APIs (#73984) (#74464)
a33b999 
Both SAML complete logout and SAML invalidate session APIs use a camelCase
request parameter, queryString, while the convention is to use snake_case
parameters. This PR deprecates queryString and replaces it with query_string.
It is an error to if a request specifies both of them.
@azasypkin azasypkin mentioned this pull request Jun 23, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tvernum tvernum tvernum approved these changes

Assignees

No one assigned

Labels

>deprecation :Security/Security Security issues without another label Team:Security Meta label for security team v7.14.0 v8.0.0-alpha1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

SAML complete logout API has a camel case request parameter

5 participants

@ywangd @elasticmachine @tvernum @azasypkin @jakelandis