-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Initial work on authentication #844
Open
VictorDelCampo
wants to merge
23
commits into
main
Choose a base branch
from
RISDEV-5805_spring_security_oauth2
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
+2,338
−112
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
RISDEV-5805
VictorDelCampo
added
the
do not merge
For sharing prototypes or ideas that are not intended for merging
label
Dec 16, 2024
RISDEV-5805
RISDEV-5805
…805_spring_security_oauth2 # Conflicts: # backend/gradle/libs.versions.toml
RISDEV-5805
RISDEV-5805
We use a service called localhost to be able to address the keycloak service as "localhost:8443" in the application.yaml of our application. Using "keycloak:8443" is not possible as spring would then redirect the user to "keycloak:8443" to login, but that is a host that is not available on the host system. The spring boot oauth implementation is very restrictive on the issuer and therefore creates errors if the hosts used by it and the user to connect to keycloak differ. See also: - spring-projects/spring-security#14633 - keycloak/keycloak#29783 - keycloak/keycloak#24252 - https://medium.com/@kostapchuk/integrating-keycloak-with-spring-boot-in-a-dockerized-environment-813eab1f140c RISDEV-5805
RISDEV-5805
RISDEV-5805
One for the full application and one for just the services. We need different network configurations for both. RISDEV-5805
RISDEV-5805
RISDEV-5805
*/ | ||
@RestController | ||
@RequestMapping("/api/v1/logout") | ||
public class LogoutController { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Do we really need this? Spring automatically creates a /logout route for this purpose
RISDEV-5805
RISDEV-5805
To fix sonar warning, removing is not possible as regexes in the get-mapping need to be assigned to a name RISDEV-5805
Quality Gate passedIssues Measures |
Quality Gate failedFailed conditions |
- using RP-Initiated Logout see https://docs.spring.io/spring-security/reference/servlet/oauth2/login/logout.html RISDEV-5806
RISDEV-5806
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
RISDEV-5805