Implement consul config for permission-mapping and config fallback #23

Closed
opened 2025-06-03 07:05:24 +00:00 by hurui200320 · 0 comments
Member

Currently the permission-mapping is stored in the application.yml, which is packaged in the distributed jar file. The permission mapping gives instructions to auth-service on how to map the URL to an OIDC client, and for the future, we may have more config that is dynamic and frequently updated to meet the services' need (for example, pass through certain url for api access).

This ticket will implement the consul config, and use the value from consul for permission mapping. If the consul is not available (either going down or something is broken), then the application should fall back to the default configuration included in the application.yml with a minimal set of configurations that allows human to access the clevermicro services to debug and fix the system (no third party services included). Right now we don't have other clevermicro services that require auth protection, so the config in application.yaml should only contain auth-service itself.

Currently the permission-mapping is stored in the `application.yml`, which is packaged in the distributed jar file. The permission mapping gives instructions to auth-service on how to map the URL to an OIDC client, and for the future, we may have more config that is dynamic and frequently updated to meet the services' need (for example, pass through certain url for api access). This ticket will implement the consul config, and use the value from consul for permission mapping. If the consul is not available (either going down or something is broken), then the application should fall back to the default configuration included in the `application.yml` with a minimal set of configurations that allows human to access the clevermicro services to debug and fix the system (no third party services included). Right now we don't have other clevermicro services that require auth protection, so the config in `application.yaml` should only contain auth-service itself.
hurui200320 added this to the V.01 milestone 2025-06-03 07:06:03 +00:00
hurui200320 2025-06-13 09:50:56 +00:00
Sign in to join this conversation.
No milestone
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Blocks
You do not have permission to read 1 dependency
Depends on
Reference: clevermicro/user-management#23
No description provided.