disable security constraint

src/main/java/com/google/webauthn/gaedemo/servlets/BeginMakeCredential.java

@@ -67,7 +67,7 @@ public class BeginMakeCredential extends HttpServlet {
     /* Tyler start -----------------*/
     UserProxyService userProxyService = UserProxyService.getInstance();
     String username = request.getParameter("username");
-    userProxyService.setUser(new User(username, "gmail.com", userService.getCurrentUser().getUserId()));
+    userProxyService.setUser(new User(username, "gmail.com"));
     User user = userProxyService.getCurrentUser();
     log.info("make" + user.toString());
     /* Tyler end -----------------*/

src/main/java/com/google/webauthn/gaedemo/servlets/Home.java

@@ -35,7 +35,12 @@ public class Home extends HttpServlet {
   @Override
   protected void doGet(HttpServletRequest request, HttpServletResponse response)
       throws ServletException, IOException {
+    /* Tyler start -----------------*/
+    String nickname = "[email protected]";
+    /* Tyler end -----------------*/
+    /* Original code
     String nickname = userService.getCurrentUser().getNickname();
+     */
     String logoutUrl = userService.createLogoutURL(request.getRequestURI());
 
     request.setAttribute("nickname", nickname);

src/main/webapp/WEB-INF/web.xml

@@ -17,44 +17,44 @@
     <listener-class>com.google.webauthn.gaedemo.server.OfyHelper</listener-class>
   </listener>
 
-  <security-constraint>
-    <web-resource-collection>
-      <web-resource-name>assetlinks</web-resource-name>
-      <url-pattern>/.well-known/*</url-pattern>
-    </web-resource-collection>
-    <!-- OMIT auth-constraint -->
-  </security-constraint>
-  <security-constraint>
-    <web-resource-collection>
-      <web-resource-name>cron</web-resource-name>
-      <url-pattern>/DeleteOldSessions</url-pattern>
-    </web-resource-collection>
-    <auth-constraint>
-      <role-name>admin</role-name>
-    </auth-constraint>
-  </security-constraint>
+<!--  <security-constraint>-->
+<!--    <web-resource-collection>-->
+<!--      <web-resource-name>assetlinks</web-resource-name>-->
+<!--      <url-pattern>/.well-known/*</url-pattern>-->
+<!--    </web-resource-collection>-->
+<!--    &lt;!&ndash; OMIT auth-constraint &ndash;&gt;-->
+<!--  </security-constraint>-->
+<!--  <security-constraint>-->
+<!--    <web-resource-collection>-->
+<!--      <web-resource-name>cron</web-resource-name>-->
+<!--      <url-pattern>/DeleteOldSessions</url-pattern>-->
+<!--    </web-resource-collection>-->
+<!--    <auth-constraint>-->
+<!--      <role-name>admin</role-name>-->
+<!--    </auth-constraint>-->
+<!--  </security-constraint>-->
 
-  <security-constraint>
-    <web-resource-collection>
-      <url-pattern>/_ah/api/*</url-pattern>
-    </web-resource-collection>
-    <user-data-constraint>
-      <transport-guarantee>CONFIDENTIAL</transport-guarantee>
-    </user-data-constraint>
-  </security-constraint>
+<!--  <security-constraint>-->
+<!--    <web-resource-collection>-->
+<!--      <url-pattern>/_ah/api/*</url-pattern>-->
+<!--    </web-resource-collection>-->
+<!--    <user-data-constraint>-->
+<!--      <transport-guarantee>CONFIDENTIAL</transport-guarantee>-->
+<!--    </user-data-constraint>-->
+<!--  </security-constraint>-->
 
-  <security-constraint>
-    <web-resource-collection>
-      <web-resource-name>all-others</web-resource-name>
-      <url-pattern>/*</url-pattern>
-    </web-resource-collection>
-    <auth-constraint>
-      <role-name>*</role-name>
-    </auth-constraint>
-    <user-data-constraint>
-      <transport-guarantee>CONFIDENTIAL</transport-guarantee>
-    </user-data-constraint>
-  </security-constraint>
+<!--  <security-constraint>-->
+<!--    <web-resource-collection>-->
+<!--      <web-resource-name>all-others</web-resource-name>-->
+<!--      <url-pattern>/*</url-pattern>-->
+<!--    </web-resource-collection>-->
+<!--    <auth-constraint>-->
+<!--      <role-name>*</role-name>-->
+<!--    </auth-constraint>-->
+<!--    <user-data-constraint>-->
+<!--      <transport-guarantee>CONFIDENTIAL</transport-guarantee>-->
+<!--    </user-data-constraint>-->
+<!--  </security-constraint>-->
 
   <context-param>
     <param-name>name</param-name>