Salastil/odysseus
1
0
Fork 0
mirror of https://github.com/pewdiepie-archdaemon/odysseus.git synced 2026-06-17 02:05:22 -04:00
Code Issues Packages Projects Releases Wiki Activity

fix(agent): honor auth-disabled tool access after setup

Browse Source 
Check explicit auth-disabled mode before configured-admin ownership checks so single-user mode keeps full agent tool access after setup.
This commit is contained in:
RaresKeY
2026-06-15 09:01:48 +03:00
committed by GitHub
parent 6824fbb729
commit a7766d0b7f
2 changed files with 34 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/tool_security.py
+6 -3
View File
@@ -177,13 +177,16 @@ def owner_is_admin_or_single_user(owner: Optional[str]) -> bool:
defense-in-depth for callers that bypass it (e.g. trusted loopback). defense-in-depth for callers that bypass it (e.g. trusted loopback).
""" """
try: try:
from src.auth_helpers import _auth_disabled
if _auth_disabled():
return True
from core.auth import AuthManager from core.auth import AuthManager
auth = AuthManager() auth = AuthManager()
if not auth.is_configured: if not auth.is_configured:
from src.auth_helpers import _auth_disabled return False
return _auth_disabled()
return bool(owner and auth.is_admin(owner)) return bool(owner and auth.is_admin(owner))
except Exception as exc: except Exception as exc:
logger.warning("Unable to evaluate owner admin status: %s", exc) logger.warning("Unable to evaluate owner admin status: %s", exc)
tests/test_review_regressions.py
+28
View File
@@ -701,6 +701,34 @@ def test_single_user_mode_keeps_full_tool_access_when_auth_disabled(monkeypatch)
assert blocked_tools_for_owner(None) == set() assert blocked_tools_for_owner(None) == set()
def test_auth_disabled_configured_mode_keeps_full_tool_access(monkeypatch):
"""AUTH_ENABLED=false is still intentional single-user mode after setup.
Once an admin account exists, AuthManager.is_configured becomes true. The
tool gate must still honor explicit auth-disabled mode before requiring an
owner/admin match, otherwise agent mode hides email/MCP/local tools from the
operator.
"""
monkeypatch.setenv("AUTH_ENABLED", "false")
auth_mod = _install_core_auth_stub(monkeypatch)
class FakeAuth:
is_configured = True
def is_admin(self, username):
return False
monkeypatch.setattr(auth_mod, "AuthManager", lambda: FakeAuth())
from src.tool_security import (
blocked_tools_for_owner,
owner_is_admin_or_single_user,
)
assert owner_is_admin_or_single_user(None) is True
assert blocked_tools_for_owner(None) == set()
@pytest.mark.asyncio @pytest.mark.asyncio
async def test_webhook_tool_reuses_private_url_validation(): async def test_webhook_tool_reuses_private_url_validation():
class FakeDb: class FakeDb: