From 2785875941f83847269eb062ba07701f0c4b5d44 Mon Sep 17 00:00:00 2001
From: Oliver Eyton-Williams <ojeytonwilliams@gmail.com>
Date: Fri, 30 Aug 2019 12:48:49 +0200
Subject: [PATCH] fix: make public certs always viewable (#36723)

---
 api-server/server/middlewares/request-authorization.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/api-server/server/middlewares/request-authorization.js b/api-server/server/middlewares/request-authorization.js
index 81cf4004db..36d2baaf23 100644
--- a/api-server/server/middlewares/request-authorization.js
+++ b/api-server/server/middlewares/request-authorization.js
@@ -16,8 +16,9 @@ import { wrapHandledError } from '../utils/create-handled-error';
 const apiProxyRE = /^\/internal\/|^\/external\//;
 const newsShortLinksRE = /^\/internal\/n\/|^\/internal\/p\?/;
 const loopbackAPIPathRE = /^\/internal\/api\//;
+const showCertRe = /^\/internal\/certificate\/showCert\//;
 
-const _whiteListREs = [newsShortLinksRE, loopbackAPIPathRE];
+const _whiteListREs = [newsShortLinksRE, loopbackAPIPathRE, showCertRe];
 
 export function isWhiteListedPath(path, whiteListREs = _whiteListREs) {
   return whiteListREs.some(re => re.test(path));