Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Consolidate pass-auth and pass-docker reverse proxy functionality into pass-core #903

Closed
markpatton opened this issue Feb 15, 2024 · 2 comments · Fixed by eclipse-pass/pass-core#82, eclipse-pass/pass-acceptance-testing#16, eclipse-pass/pass-support#104, eclipse-pass/pass-docker#365 or eclipse-pass/pass-ui#1260
Closed

Consolidate pass-auth and pass-docker reverse proxy functionality into pass-core #903

markpatton opened this issue Feb 15, 2024 · 2 comments · Fixed by eclipse-pass/pass-core#82, eclipse-pass/pass-acceptance-testing#16, eclipse-pass/pass-support#104, eclipse-pass/pass-docker#365 or eclipse-pass/pass-ui#1260
Assignees
@markpatton
Labels
CI/CD
Milestone
1.6.0

Comments

@markpatton
Copy link
Contributor

markpatton commented Feb 15, 2024
edited by dkriethof
Loading

What?

The PASS API should be easy to deploy and it should be easy to understand how authentication is handled. In order to do that, pass-core should take over the functionality of pass-auth and the pass-docker reverse proxy. The pass-docker environments will also need to updated.

Why?

The current pass-docker architecture is complicated interleaving a reverse proxy, pass-auth, and pass-core. Instead pass-core should take over that functionality. See https://docs.google.com/document/d/1swYRvwNeouMyuG9xEbSBLFffUpBstllI1bP5Zcsx3ME/edit?usp=sharing for more information.

How?

See the above linked document for information on what routes pass-auth and the reverse proxy currently handle and what pass-core needs to do. Spring security has support for SAML 2 which should help with the pass-auth functionality.

Acceptance Criteria

The pass-docker environments should be updated such that they can run the new pass-core. Show that Shib integration works on staging.

Related Issues

Blocking #907, #908, #909
@markpatton markpatton added the Improvement improvement or enhancement suggestions label Feb 15, 2024
@github-project-automation github-project-automation bot moved this to Backlog in Eclipse PASS Feb 15, 2024
@markpatton markpatton mentioned this issue Feb 15, 2024
Closed
@dkriethof dkriethof added CI/CD and removed Improvement improvement or enhancement suggestions labels Feb 27, 2024
@dkriethof dkriethof moved this from Backlog to Ready for Development in Eclipse PASS Feb 27, 2024
@dkriethof dkriethof moved this from Ready for Development to Backlog in Eclipse PASS Feb 27, 2024
@dkriethof dkriethof added this to the 1.5.0 milestone Feb 27, 2024
@dkriethof dkriethof moved this from Backlog to Ready for Development in Eclipse PASS Feb 29, 2024
@jaredgalanis jaredgalanis mentioned this issue Mar 6, 2024
Closed
@dkriethof dkriethof mentioned this issue Mar 6, 2024
Open
@markpatton markpatton moved this from Ready for Development to In Progress in Eclipse PASS Mar 7, 2024
@markpatton markpatton self-assigned this Mar 7, 2024
@markpatton markpatton linked a pull request Mar 18, 2024 that will close this issue
Take over the responsibility of pass-auth and pass-docker reverse proxy eclipse-pass/pass-core#82
Merged
@tsande16 tsande16 modified the milestones: 1.5.0, 1.6.0 Mar 27, 2024
@markpatton markpatton mentioned this issue Apr 16, 2024
Closed
This was linked to pull requests Apr 16, 2024
Update for pass-auth consolidation eclipse-pass/pass-acceptance-testing#16
Merged
Modify pass-core test container to use basic auth in wait strategy. eclipse-pass/pass-support#104
Merged
Have pass-core take over reverse proxy and pass-auth eclipse-pass/pass-docker#365
Merged
Replace pass-auth authenticated service with user service eclipse-pass/pass-ui#1260
Merged
Update documentation for the auth consolidation #956
Merged
@markpatton
Copy link
Contributor Author

markpatton commented Apr 16, 2024
edited
Loading

The major changes are the removal of pass-auth and the reverse proxy from pass-docker. Instead pass-core takes on those roles and handles SAML authentication as well as requests for pass-ui under /app/.

@markpatton markpatton mentioned this issue Mar 26, 2024
Open
@github-project-automation github-project-automation bot moved this from In Progress to Done in Eclipse PASS Apr 22, 2024
@markpatton markpatton reopened this Apr 22, 2024
@github-project-automation github-project-automation bot moved this from Done to Backlog in Eclipse PASS Apr 22, 2024
@github-project-automation github-project-automation bot moved this from Backlog to Done in Eclipse PASS Apr 22, 2024
@markpatton markpatton reopened this Apr 22, 2024
@github-project-automation github-project-automation bot moved this from Done to Backlog in Eclipse PASS Apr 22, 2024
@dkriethof dkriethof moved this from Backlog to In Progress in Eclipse PASS Apr 23, 2024
@markpatton
Copy link
Contributor Author

Closing after testing on stage.

@github-project-automation github-project-automation bot moved this from In Progress to Done in Eclipse PASS Apr 25, 2024
@rpoet-jh rpoet-jh moved this from Done to Deployed in Eclipse PASS May 6, 2024
@rpoet-jh rpoet-jh mentioned this issue May 16, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@markpatton markpatton

Labels
CI/CD
Projects
Eclipse PASS
Archived in project
Milestone
1.6.0
3 participants
@markpatton @tsande16 @dkriethof