ATH-01-004: remove env from admin system endpoint

this endpoint already required admin access, but for debugging the env variables are used very little Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2023-06-07 12:07:01 +02:00 · 2023-06-07 12:07:01 +02:00 · 5336afb1b4
parent 9bb44055a3
commit 5336afb1b4
2 changed files with 0 additions and 12 deletions
--- a/authentik/admin/api/system.py
+++ b/authentik/admin/api/system.py
@ -34,7 +34,6 @@ class RuntimeDict(TypedDict):
 class SystemSerializer(PassiveSerializer):
    """Get system information."""
    env = SerializerMethodField()
    http_headers = SerializerMethodField()
    http_host = SerializerMethodField()
    http_is_secure = SerializerMethodField()
@ -43,10 +42,6 @@ class SystemSerializer(PassiveSerializer):
    server_time = SerializerMethodField()
    embedded_outpost_host = SerializerMethodField()
    def get_env(self, request: Request) -> dict[str, str]:
        """Get Environment"""
        return os.environ.copy()
    def get_http_headers(self, request: Request) -> dict[str, str]:
        """Get HTTP Request headers"""
        headers = {}
--- a/schema.yml
+++ b/schema.yml
@ -40493,12 +40493,6 @@ components:
      type: object
      description: Get system information.
      properties:
        env:
          type: object
          additionalProperties:
            type: string
          description: Get Environment
          readOnly: true
        http_headers:
          type: object
          additionalProperties:
@ -40552,7 +40546,6 @@ components:
          readOnly: true
      required:
      - embedded_outpost_host
      - env
      - http_headers
      - http_host
      - http_is_secure