Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[7º] - Release/v2.0.0 authorization: Enabled BPN block and Role Authorization in the Digitla #161

Merged
merged 24 commits into from
Dec 22, 2023
Merged

[7º] - Release/v2.0.0 authorization: Enabled BPN block and Role Authorization in the Digitla #161

merged 24 commits into from
Dec 22, 2023

Conversation

matbmoser
Copy link
Contributor

Why we create this PR?

There is the requirement to block the user when the token configuration is not correct and authorized. We need to block if the configuration is enabled the users that have different bpns as in the authorization configuration.

The requirement is because of data souverenity, and makes the app comply into the guidelines of authorization and authentication. Also is important to improve the backend configuration and security, as well as the backend.

What we want to achieve with this PR?

Implement the authorization for BPN and AppId Authentication.
Improve the security configuration in the backend and frontend.

What is new?

Added

  • Added Check of BPN Number in Frontend (With Trigger in Configuration)
  • Added Check of BPN Number in Backend (With Trigger in Configuration)
  • Added Check for appId Roles in Frontend (With Trigger in Configuration)
  • Added Check for appId Roles in Backend (With Trigger in Configuration)
  • Added new security checks in the backend and frontend
  • Added new non authorized view in the frontend

Update

  • Refactored helm chart values configuration.
  • Refactored backend values chart configuration

PR Linked to:

Tickets
CMP-747]

Mathias Brunkow Moser and others added 23 commits November 29, 2023 16:37
feat: created structure to parse token in frontend and check bpn
bcbfcd6
feat: created structure to parse token in frontend and check bpn
caeca2f
feat: added feature to capture not authentication and not availablity…
ff95442 
… with error
feat: added bpn check mechanism with global authentication check
22d328c
fix: fixed error in role fetching by client id
0a5bbb4
chore: added configurations in deployment for frontend
1931080
Merge branch 'develop' of https://github.com/catenax-ng/tx-digital-pr…
4ffdd21 
…oduct-pass into feature/cmp-747/bpn-block
feat: added role authentication trigger
cd2e4b2
fix: fizxed configuration of frontend
a06d801
feat: added bpn and role checks in the backend
ef4b45d
chore: added new configuration in helm charts for backend
dfbc0be
chore(charts): updated things in the charts configuration
ecb4fe5
fix: fixed role authentication in backend
de053f3
chore: added trace logs in the frontend
6cfbbe2
feat: added startup authorization checks
c4a3450
fix(frontend): fixed frontned check bpn function
77e83d2
fix: fixed details in startup checks
d13f55c
fix: fixed backend bpn check
38218ae
chore: disabled role check in app
78aee04
chore: removed debugging logs
f2bcd8c
@matbmoser
Merge branch 'develop' into feature/cmp-747/bpn-block
667f973
@matbmoser
chore: fixed linting of values file
1d2849c
@matbmoser
Merge pull request #202 from catenax-ng/feature/cmp-747/bpn-block
efeb3bc 
Feature/cmp 747/bpn block: Implemented Authorization mechanism in the Application
@matbmoser matbmoser added backend Issue or PR connected to the backend application security labels Dec 22, 2023
@matbmoser matbmoser added this to the v2.0.0 milestone Dec 22, 2023
@matbmoser matbmoser self-assigned this Dec 22, 2023
@matbmoser matbmoser changed the title [5º] - Release/v2.0.0 authorization: Enabled BPN block and Role Authorization in the Digitla [7º] - Release/v2.0.0 authorization: Enabled BPN block and Role Authorization in the Digitla Dec 22, 2023
saudkhan116
saudkhan116 approved these changes Dec 22, 2023
View reviewed changes
Copy link
Contributor

@saudkhan116 saudkhan116 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I reviewed this PR and the changed files are compliant.

@matbmoser matbmoser merged commit 4246c9d into eclipse-tractusx:main Dec 22, 2023
5 of 6 checks passed
@matbmoser matbmoser deleted the release/v2.0.0-authorization branch December 22, 2023 17:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@saudkhan116 saudkhan116 saudkhan116 approved these changes

Assignees

@matbmoser matbmoser

Labels
backend Issue or PR connected to the backend application security
Projects
Digital Product Pass
Archived in project
Milestone
v2.0.0
Development

Successfully merging this pull request may close these issues.
2 participants
@matbmoser @saudkhan116