Removed brute force middleware form content api (#10353)

* Removed brute force middleware form content api no-issue This is just temporary * Skipped brute test for content api
2024-11-28 22:43:30 +03:00 · 2019-01-09 11:38:03 +01:00 · 2019-01-09 11:38:03 +01:00 · 63c8c310fb
commit 63c8c310fb
parent dcaed2be3c
2 changed files with 4 additions and 2 deletions
--- a/core/server/web/api/v2/content/middleware.js
+++ b/core/server/web/api/v2/content/middleware.js
@ -14,7 +14,9 @@ const shared = require('../../../shared');
 * Authentication for public endpoints
 */
 module.exports.authenticatePublic = [
-    shared.middlewares.brute.contentApiKey,
+    /* @TODO: put this back
+     * shared.middlewares.brute.contentApiKey,
+     */
    auth.authenticate.authenticateContentApi,
    auth.authorize.authorizeContentApi,
    cors(),
--- a/core/test/unit/web/api/v2/content/middleware_spec.js
+++ b/core/test/unit/web/api/v2/content/middleware_spec.js
@ -6,7 +6,7 @@ describe('Content Api v2 middleware', function () {
        should.exist(middleware.authenticatePublic);
    });

-    describe('authenticatePublic', function () {
+    describe.skip('authenticatePublic', function () {
        it('uses brute content api middleware as the first middleware in the chain', function () {
            const firstMiddleware = middleware.authenticatePublic[0];
            const brute = require('../../../../../../server/web/shared/middlewares/brute');