Remove hardcoded localhost auth from relay authenticator (#1007)

Layr-Labs · Dec 18, 2024 · f4fdd0a · f4fdd0a
1 parent 4faad4d
commit f4fdd0a
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 6 deletions.
diff --git a/inabox/deploy/config.go b/inabox/deploy/config.go
@@ -357,6 +357,8 @@ func (env *Config) generateRelayVars(ind int, graphUrl, grpcPort string) RelayVa
 		RELAY_ONCHAIN_STATE_REFRESH_INTERVAL:        "1s",
 		RELAY_MAX_CONCURRENT_GET_CHUNK_OPS_CLIENT:   "10",
 		RELAY_MAX_GET_CHUNK_BYTES_PER_SECOND_CLIENT: "100000000",
+		// TODO(ian-shim): set this to false once there is request signing at the relay client
+		RELAY_AUTHENTICATION_DISABLED: "true",
 	}
 	env.applyDefaults(&v, "RELAY", "relay", ind)
 

diff --git a/relay/auth/authenticator.go b/relay/auth/authenticator.go
@@ -4,7 +4,6 @@ import (
 	"context"
 	"errors"
 	"fmt"
-	"strings"
 	"sync"
 	"time"
 
@@ -107,11 +106,6 @@ func (a *requestAuthenticator) AuthenticateGetChunksRequest(
 	request *pb.GetChunksRequest,
 	now time.Time) error {
 
-	if strings.HasPrefix(origin, "127.0.0.1") {
-		// TODO(ian-shim): Remove this block once we have a way to authenticate requests.
-		return nil
-	}
-
 	if a.isAuthenticationStillValid(now, origin) {
 		// We've recently authenticated this client. Do not authenticate again for a while.
 		return nil