check servicelink disabled

Ian-Nara · Ian-Nara · commit fe2d0f15e593 · 2025-06-30T14:12:24.000-06:00
diff --git a/src/main/java/com/uid2/operator/service/SecureLinkValidatorService.java b/src/main/java/com/uid2/operator/service/SecureLinkValidatorService.java
@@ -46,9 +46,12 @@ public boolean validateRequest(RoutingContext rc, JsonObject requestJsonObject,
                         LOGGER.warn("Path: {} , ClientKey has ServiceId set, but LinkId in request was not authorized. ServiceId: {}, LinkId in request: {}", rc.normalizedPath(), clientKey.getServiceId(), linkId);
                         return false;
                     }
+                    if (serviceLink.isDisabled()) {
+                        LOGGER.warn("Path: {} , ServiceLink {} is disabled", rc.normalizedPath(), linkId);
+                        return false;
+                    }
                     if (!serviceLink.getRoles().contains(role)) {
                         LOGGER.warn("Path: {} , ServiceLink {} does not have role {}", rc.normalizedPath(), linkId, role);
-
                         return false;
                     }
                     Service service = rotatingServiceStore.getService(clientKey.getServiceId());
diff --git a/src/test/java/com/uid2/operator/service/SecureLinkValidatorServiceTest.java b/src/test/java/com/uid2/operator/service/SecureLinkValidatorServiceTest.java
@@ -67,6 +67,18 @@ void validateRequest_linkIdNotFound_returnsFalse() {
         assertFalse(service.validateRequest(this.routingContext, requestJsonObject, Role.MAPPER));
     }
 
+    @Test
+    void validateRequest_linkIdFoundLinkDisabled_returnsFalse() {
+        this.setClientKey(10);
+        JsonObject requestJsonObject = new JsonObject();
+        requestJsonObject.put(SecureLinkValidatorService.LINK_ID, "999");
+
+        when(this.rotatingServiceLinkStore.getServiceLink(10, "999")).thenReturn(new ServiceLink("999", 10, 100, "testServiceLink", Set.of(Role.MAPPER), true));
+
+        SecureLinkValidatorService service = new SecureLinkValidatorService(this.rotatingServiceLinkStore, this.rotatingServiceStore);
+        assertFalse(service.validateRequest(this.routingContext, requestJsonObject, Role.MAPPER));
+    }
+
     @Test
     void validateRequest_roleNotInServiceLink_returnsFalse() {
         this.setClientKey(10);

Original file line number	Diff line number	Diff line change
`@@ -46,9 +46,12 @@ public boolean validateRequest(RoutingContext rc, JsonObject requestJsonObject,`
`46`	`46`	`LOGGER.warn("Path: {} , ClientKey has ServiceId set, but LinkId in request was not authorized. ServiceId: {}, LinkId in request: {}", rc.normalizedPath(), clientKey.getServiceId(), linkId);`
`47`	`47`	`return false;`
`48`	`48`	`}`
	`49`	`+ if (serviceLink.isDisabled()) {`
	`50`	`+ LOGGER.warn("Path: {} , ServiceLink {} is disabled", rc.normalizedPath(), linkId);`
	`51`	`+ return false;`
	`52`	`+ }`
`49`	`53`	`if (!serviceLink.getRoles().contains(role)) {`
`50`	`54`	`LOGGER.warn("Path: {} , ServiceLink {} does not have role {}", rc.normalizedPath(), linkId, role);`
`51`		`-`
`52`	`55`	`return false;`
`53`	`56`	`}`
`54`	`57`	`Service service = rotatingServiceStore.getService(clientKey.getServiceId());`