Compare commits

..

3 Commits

Author SHA1 Message Date
Abed 93e03bb6fc Implement Intra-Organization Group Management APIs in auth-service #25
Unit test coverage / gradle-test (push) Failing after 2m34s
Unit test coverage / gradle-test (pull_request) Failing after 2m50s
CI for publishing docker image / build-and-publish (push) Successful in 3m33s
2025-06-24 23:02:59 +03:00
Abed 0880c2841b feat #24 Implement Tenant (Organization) Management APIs in auth-service
Unit test coverage / gradle-test (push) Failing after 1m57s
CI for publishing docker image / build-and-publish (push) Successful in 2m35s
Unit test coverage / gradle-test (pull_request) Failing after 1m24s
2025-06-19 18:10:26 +03:00
hurui200320 0aeb9af696 refactor(General): replace role-based auth with UMA ticket
Unit test coverage / gradle-test (push) Failing after 2m2s
CI for publishing docker image / build-and-publish (push) Successful in 2m39s
Unit test coverage / gradle-test (pull_request) Failing after 1m20s
add config properties, adapt setup from clevermicro/identity-management#9
replace role-based forward auth with UMA ticket
add pass-through config
implement unit tests for the change.

ISSUES CLOSED: clevermicro/user-management#28
2025-06-16 14:42:40 +08:00
2 changed files with 2 additions and 7 deletions
@@ -179,8 +179,7 @@ public class AuthController {
RequestMethod.PUT, RequestMethod.DELETE,
RequestMethod.PATCH})
public Mono<ResponseEntity<?>> forwardAuth(
@RequestHeader(value = HttpHeaders.AUTHORIZATION, required = false)
String authorizationHeader,
@RequestHeader(HttpHeaders.AUTHORIZATION) String authorizationHeader,
@RequestHeader(HEADER_X_FORWARDED_METHOD) String originalMethod,
@RequestHeader(HEADER_X_FORWARDED_URI) String originalUriString
) {
@@ -200,9 +199,6 @@ public class AuthController {
if (shouldPassThrough(targetServiceClientId, serviceRelativePath)) {
return Mono.just(ResponseEntity.status(HttpStatus.NO_CONTENT).build());
}
if (authorizationHeader == null) {
return Mono.just(ResponseEntity.status(HttpStatus.BAD_REQUEST).build());
}
// no pass-through, check permission
final var accessToken = extractBearerToken(authorizationHeader);
if (accessToken == null) {
+1 -2
View File
@@ -15,8 +15,7 @@ spring:
# Keycloak Configuration (adjust values as needed)
keycloak:
keycloak-host: ${KEYCLOAK_AUTH_SERVER_URL:http://localhost:9100} # Base URL of your Keycloak instance (NO trailing slash)
keycloak-admin-host: ${KEYCLOAK_AUTH_ADMIN_SERVER_URL:http://localhost:9100} # Base URL of your Keycloak instance (NO trailing slash)
server-url: ${KEYCLOAK_AUTH_SERVER_URL:http://localhost:9100} # Base URL of your Keycloak instance (NO trailing slash)
realm: ${KEYCLOAK_AUTH_REALM:clevermicro-dev} # The realm name you are using
client-id: ${KEYCLOAK_AUTH_SERVICE_CLIENT:auth-service} # Client ID created in Keycloak for this service
client-secret: ${KEYCLOAK_AUTH_SERVICE_SECRET:UJ1sMcWciIRREfjjAGoLHUDynLT4aYdD} # Client Secret from Keycloak (use secrets management!)