Implement consul config for permission-mapping and config fallback #23

Closed
opened 2025-06-03 07:05:24 +00:00 by hurui200320 · 0 comments
Member

Currently the permission-mapping is stored in the application.yml, which is packaged in the distributed jar file. The permission mapping gives instructions to auth-service on how to map the URL to an OIDC client, and for the future, we may have more config that is dynamic and frequently updated to meet the services' need (for example, pass through certain url for api access).

This ticket will implement the consul config, and use the value from consul for permission mapping. If the consul is not available (either going down or something is broken), then the application should fall back to the default configuration included in the application.yml with a minimal set of configurations that allows human to access the clevermicro services to debug and fix the system (no third party services included). Right now we don't have other clevermicro services that require auth protection, so the config in application.yaml should only contain auth-service itself.

Currently the permission-mapping is stored in the `application.yml`, which is packaged in the distributed jar file. The permission mapping gives instructions to auth-service on how to map the URL to an OIDC client, and for the future, we may have more config that is dynamic and frequently updated to meet the services' need (for example, pass through certain url for api access). This ticket will implement the consul config, and use the value from consul for permission mapping. If the consul is not available (either going down or something is broken), then the application should fall back to the default configuration included in the `application.yml` with a minimal set of configurations that allows human to access the clevermicro services to debug and fix the system (no third party services included). Right now we don't have other clevermicro services that require auth protection, so the config in `application.yaml` should only contain auth-service itself.
hurui200320 added the
Priority
Backlog
State
Unverified
Type
Task
labels 2025-06-03 07:05:24 +00:00
hurui200320 added a new dependency 2025-06-03 07:05:42 +00:00
hurui200320 added this to the V.01 milestone 2025-06-03 07:06:03 +00:00
abed.alrahman added
State
Verified
Points
8
Priority
High
and removed
State
Unverified
Priority
Backlog
labels 2025-06-04 10:14:46 +00:00
hurui200320 self-assigned this 2025-06-05 09:58:12 +00:00
hurui200320 added this to the Sprint June 1st- 14th project 2025-06-05 09:58:16 +00:00
hurui200320 added
State
In Progress
and removed
State
Verified
labels 2025-06-05 09:58:20 +00:00
hurui200320 added
State
In Review
and removed
State
In Progress
labels 2025-06-06 08:37:33 +00:00
hurui200320 added
State
Completed
and removed
State
In Review
labels 2025-06-13 09:50:56 +00:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Blocks
You do not have permission to read 1 dependency
Depends on
Reference: clevermicro/user-management#23