Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ID-1285 switch open api to only oauth2 security scheme #1448

Merged
merged 5 commits into from
Jun 3, 2024
Merged

ID-1285 switch open api to only oauth2 security scheme #1448

merged 5 commits into from
Jun 3, 2024

Conversation

dvoet
Copy link
Collaborator

@dvoet dvoet commented May 30, 2024

Ticket: https://broadworkbench.atlassian.net/browse/ID-1285

<Don't forget to include the ticket number in the PR title!>

What:

<For your reviewers' sake, please describe in a sentence or two what this PR is accomplishing (usually from the users' perspective, but not necessarily).>

Why:

<For your reviewers' sake, please describe in ~1 paragraph what the value of this PR is to our users or to ourselves.>

How:

<For your reviewers' sake, please describe in ~1 paragraph how this PR accomplishes its goal.>

<If the PR is big, please indicate where a reviewer should start reading it (i.e. which file or function).>

PR checklist

  • I've followed the instructions if I've made any changes to the API, especially if they're breaking changes
  • I've filled out the Security Risk Assessment (requires Broad Internal network access) and attached the result to the JIRA ticket

dvoet
dvoet commented May 30, 2024
View reviewed changes
docker/run-proxy.sh
@@ -11,6 +11,7 @@ start() {
docker create --name "${CONTAINER}" \
--restart "always" \
-p 40080:80 -p 50443:443 \
-e "B2C_APPLICATION_ID=${OIDC_CLIENT_ID}" \
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

fixes local deployment to do the audience check correctly

dvoet
dvoet commented May 30, 2024
View reviewed changes
project/Dependencies.scala Outdated Show resolved Hide resolved
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

dvoet
dvoet commented May 31, 2024
View reviewed changes
src/main/resources/swagger/api-docs.yaml
Comment on lines +4755 to +4757
scopes: {}
tokenUrl: OAUTH_TOKEN_URL
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

replacements for OAUTH_AUTHORIZATION_URL and OAUTH_TOKEN_URL were implemented in workbenchLibs

@dvoet dvoet enabled auto-merge (squash) May 31, 2024 18:03
Ghost-in-a-Jar
Ghost-in-a-Jar approved these changes Jun 3, 2024
View reviewed changes
Copy link
Contributor

@Ghost-in-a-Jar Ghost-in-a-Jar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks for doing this

@dvoet dvoet merged commit 3342d07 into develop Jun 3, 2024
24 checks passed
@dvoet dvoet deleted the swagger_oauth2 branch June 3, 2024 14:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Ghost-in-a-Jar Ghost-in-a-Jar Ghost-in-a-Jar approved these changes

@tlangs tlangs tlangs approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@dvoet @tlangs @Ghost-in-a-Jar