-
Notifications
You must be signed in to change notification settings - Fork 23
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #296 from catenax-ng/main
BpnEntity
- Loading branch information
Showing
50 changed files
with
509 additions
and
553 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1 +1,62 @@ | ||
= Safety and security concepts | ||
|
||
== Authentication / Authorization | ||
|
||
=== Trace-X API | ||
|
||
The Trace-X is secured using OAuth2.0 / Open ID Connect. | ||
Every request to the Trace-X API requires a valid bearer token. | ||
JWT token should also contain two claims: | ||
|
||
- 'bpn' which is equal to the configuration value from `API_ALLOWED_BPN` property | ||
- 'resource_access' with the specific key for C-X environments. | ||
The list of values will be converted to roles by Trace-X. | ||
Currently, Trace-X API handles three roles: **'User'** and **'Supervisor'** and **'Admin'.** | ||
|
||
The behavior is shown in the table below. | ||
|
||
==== Rights and Roles Matrix of Trace-X | ||
|
||
|=== | ||
| Category | Action | User | Supervisor | Admin | ||
| View | View Dashboard | x | x | x | ||
| | View Parts | x | x | x | ||
| | View Other parts | x | x | x | ||
| | View Quality investigations | x | x | x | ||
| | View Quality alerts | x | x | x | ||
| | View Administration | | | x | ||
|
||
| Investigation | Create | x | x | | ||
| | Send | | x | | ||
| | Read | x | x | x | ||
| | Update | x | x | | ||
| | Delete All | | x | | ||
| | Delete Own | (x) | x | | ||
|
||
| Alert | Create | x | x | | ||
| | Send | | x | | ||
| | Read | x | x | x | ||
| | Update | x | x | | ||
| | Delete All | | x | | ||
| | Delete Own | (x) | x | | ||
|
||
| Administration Panel | Access "BPN EDC config panel" | | | x | ||
| | Access "Registry lookup Panel" | | | x | ||
|
||
|=== | ||
|
||
Legend: x = full access to all resources, (x) = access to the resources he owns | ||
|
||
=== Trace-X as EDC client | ||
|
||
The Trace-X accesses the Catena-X network via the EDC consumer connector. | ||
This component requires authentication via a Verifiable Credential (VC), which is provided to the EDC via the Managed Identity Wallet. | ||
|
||
The VC identifies and authenticates the EDC and is used to acquire access permissions for the data transferred via EDC. | ||
|
||
== Credentials | ||
|
||
Credentials must never be stored in Git! | ||
|
||
|
||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
30 changes: 0 additions & 30 deletions
30
...end/src/main/java/org/eclipse/tractusx/traceability/assets/domain/base/BpnRepository.java
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
58 changes: 0 additions & 58 deletions
58
...org/eclipse/tractusx/traceability/assets/infrastructure/repository/jpa/bpn/BpnEntity.java
This file was deleted.
Oops, something went wrong.
64 changes: 0 additions & 64 deletions
64
...actusx/traceability/assets/infrastructure/repository/jpa/bpn/PersistentBpnRepository.java
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.