 Carl Woolf | 25f56cae334 | correct path for config for whether authzn is desired | | |
Carl Woolf | f4cfbe6b61c | config checks whether authzn is desired | | |
Carl Woolf | 1ba86770bc3 | polish / simplify AttrProvider pattern | | |
 Xav | 069aa0df0ea | modify attribute providers to use a single flat list of config blocks; | | |
Xav | f8eeb6e9b8e | simplify shibboleth config for sessionHook | | |
Xav | 99c263447ea | add missing sessionHook attribute | | |
Xav | 623d445103f | rename one attribute provider and make the rest of them objects | | |
Xav | ad71528362c | loop through attribute provider names as configured and add an initial empty entry in globalUserInfo for each | | |
Carl Woolf | dc10d5b4bc8 | omit unused val assignment | | |
Carl Woolf | d086172bb92 | progress on dynamically using attrProvider classes | | |
Carl Woolf | 7367110ea98 | explanatory comments about the Seq's , part 2 | | |
Carl Woolf | 46da310f9bb | explanatory comments about the Seq's | | |
Carl Woolf | 8493897900d | tweak / cleanup authInfo endpoints | | |
Carl Woolf | e645fc364e8 | Revert "Revert "remove local presence of shrineSP.conf""
This reverts commit b33cce59902321100e036507df25a2ba5b49c34e. | | |
Carl Woolf | b33cce59902 | Revert "remove local presence of shrineSP.conf"
This reverts commit cbaf5aa58d4897f75902d8be2a72e1ff0dbf28e7. | | |
Carl Woolf | 8dcd48bcb0e | progress wiring authz attributes | | |
Carl Woolf | cbaf5aa58d4 | remove local presence of shrineSP.conf | | |
Carl Woolf | 7e5233df09e | shrineSP.conf actually works better living here, not in sso-configs. Deploy works both ways, but war-copy needs it here | | |
Carl Woolf | 99f0a283a75 | tweaking endpoint regex, add smoke-test endpoint | | |
Carl Woolf | 86a978da972 | ho ho ho. progress toward endpoint config. refactored List to Seq, when possible, the latter is "the scala way" | | |
Carl Woolf | eff9954361f | remove resources folder. conf is now in sso-configs | | |
Carl Woolf | 664a791800e | remove local shrineSP.conf, should come from sso-configs | | |
Carl Woolf | 91b598578a4 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Carl Woolf | ec07df85cb7 | try adding shrineSP to config ecosystem | | |
Xav | b0954e52072 | fix a bug and add explanatory content to debug statements | | |
Xav | 58267a67af2 | port the AbstractAuthorizer and HmsAuthorizer classes to scala. move EndpointProviders to the providerService.attribu... | | |
Xav | 45c43ee96af | port the AbstractAttrProvider and RequestHeadersAttrProvider classes to scala. Need to be hooked up to the configurat... | | |
 dwalend | da737f72e0f | Cleaning up some old test code for SHRINE2020-621, SHRINE-3613, SHRINE-3578, SHRINE-3310 | | |
Xav | 5ed1ece31f0 | fix reading-in name of authorizer and names of header configuration providers; dump the result to the browser | | |
Xav | 09bf0aab9ef | Merge branch 'sso-phase2' of https://open.catalyst.harvard.edu/stash/scm/shrine/shrine into sso-phase2 | | |
Xav | 665cc58e8a2 | setup code to be able to inspect 4 config settings | | |
Carl Woolf | c10cf005495 | initial work on endpointProviders. remove bad line from conf-addition | | |
Xav | f6f5f8dbb6d | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2 | | |
Xav | 5f5f4b0a952 | fix AttributesConf. Other confs remain to be made to work. | | |
Carl Woolf | 4ccaded2e31 | make allConfig eager | | |
Carl Woolf | b32d0771332 | allconfig helper | | |
Carl Woolf | daf6f52267f | logout redirect works | | |
Carl Woolf | 50baffbd8f2 | onShibLogin redirect works | | |
Xav | 82edfcb1d46 | maintain a single map of all the logged in users. Add end-points for "logging in" and "out" of the map. | | |
 David Walend | 1ae8e863f63 | Pull request #1352: Feature/SHRINE2020 1261
Merge in SHRINE/shrine from feature/SHRINE2020-1261 to develop
* commit... | | |
dwalend | 63caaeb5bcb | Removed a stray println for SHRINE2020-1261 | | |
Carl Woolf | 7c03d2942f0 | remove 'print statement' info() calls. remove one bit of laziness. update readme | | |
Carl Woolf | f5001250a5b | OMG, config'd endpoint isBlacklist works | | |
Carl Woolf | a0f211877da | bit more progress towards db read-access for blacklist... WIP, no cigar yet | | |
Carl Woolf | 64b8a91c174 | progress towards db read-access for blacklist... WIP, no cigar yet | | |
dwalend | eca253f9cf7 | Added a command to switch MOM systems for SHRINE2020-1261 | | |
Carl Woolf | 65cb1ffd14a | demo treating path-parameter, improved query parameter treatment | | |
Carl Woolf | 026f9b2cf92 | on the way to colorList db. reorganize service / endpoints. add headers and query-params to cookies output | | |
Carl Woolf | 6254db92bde | steps toward black-white table | | |
dwalend | d87f9ef5de3 | Updated README.md for SHRINE2020-987 | | |
Carl Woolf | def52223577 | add comment | | |
Carl Woolf | 7f3979b3a1a | more robust profiles logic. despite its discouraging name, unsafeRunSync() seems to be the go-to way to get a synchro... | | |
dwalend | ba64285f972 | Updates for perftest SHRINE2020-988 | | |
Carl Woolf | bc779eb2966 | tweak some names | | |
Carl Woolf | 9f0c13a6ede | progress with profiles | | |
Carl Woolf | 22ce75cf34e | progress (but no cigar) with profiles | | |
Carl Woolf | ae289b240a5 | incorporate populate() into infoUser object | | |
Carl Woolf | 0c2dd99f8d7 | don't quote the Option[String] | | |
Carl Woolf | 047d5542b24 | embryonic behaviors around userInfo map | | |
dwalend | 8ebc56c4ab0 | Updated the jmeter test for the newer networks for SHRINE2020-988 | | |
Carl Woolf | 5f14c481ac1 | extract remote-user from header | | |
Carl Woolf | d4234356f6f | first step towards authorizer in the http4s eco-system on shrine | | |
dwalend | 3b5ce8f426b | Parking SHRINE2020-1261 to work on performance tests | | |
David Walend | 8c1ec44aa3a | Pull request #1351: Removed the forced dependency on apache commons-text now that opencsv is updated for SHRINE2020-1... | | |
David Walend | cf032c2c7f5 | Pull request #1350: Feature/SHRINE2020 1259
Merge in SHRINE/shrine from feature/SHRINE2020-1259 to develop
* commit... | | |
dwalend | c224516a6d2 | Removed the forced dependency on apache commons-text now that opencsv is updated for SHRINE2020-1255 | | |
David Walend | 2a97024806b | Pull request #1349: Turns out SHRINE2020-1258 shouldn't be done after all.
Merge in SHRINE/shrine from feature/SHRIN... | | |
dwalend | 77ae60fd162 | Changed over the hub database code to all use cats IO - never blocks - for SHRINE2020-1259 | | |
dwalend | 8cb982f62fc | Replaced all uses of runTransactionBlocking in the hub db with IO for SHRINE2020-1259 | | |
dwalend | 0ba156bd4d9 | Turns out SHRINE2020-1258 shouldn't be done after all. Added a comment. | | |
David Walend | 070d4800041 | Pull request #1348: Bugfix/SHRINE2020 1252
Merge in SHRINE/shrine from bugfix/SHRINE2020-1252 to develop
* commit '... | | |
dwalend | 5b1054a9370 | Merge remote-tracking branch 'origin/develop' into bugfix/SHRINE2020-1252 | | |
David Walend | bd9a344ad2d | Pull request #1347: Feature/SHRINE2020 1246
Merge in SHRINE/shrine from feature/SHRINE2020-1246 to develop
* commit... | | |
David Walend | b441dfee3da | Pull request #1345: Feature/SHRINE2020 1132
Merge in SHRINE/shrine from feature/SHRINE2020-1132 to develop
* commit... | | |
dwalend | c5b6b4f522b | Each receiver should have its own group for SHRINE2020-1132 | | |
dwalend | 316e60ba3d3 | Merge branch 'feature/SHRINE2020-1132' into bugfix/SHRINE2020-1252 | | |
dwalend | d66760e4721 | Only let tomcat create queues when using the legacy MOM system for SHRINE2020-1252 | | |
dwalend | ba1a1cd13ac | Missed deleting a chunk I commented out for SHRINE2020-1246 | | |
dwalend | 6b1c149d014 | Cut out some dead code and get the sql code right for SHRINE2020-1246 | | |
dwalend | 1d088390d1c | Added a STATUS column to the hub's QUERIES table for SHRINE2020-1246 | | |
Carl Woolf | 885d1b2aa48 | "shrineAuthorize" in proxyPass | | |
David Walend | fdace1357bb | Pull request #1346: Bumped the Scala version to 2.13.10 for SHRINE2020-1251
Merge in SHRINE/shrine from feature/SHRI... | | |
dwalend | 6cc97c63cb4 | Bumped the Scala version to 2.13.10 for SHRINE2020-1251 | | |
dwalend | 1897da200a8 | Cleanup before review for SHRINE2020-1132 | | |
dwalend | de61f26d862 | Made group id a property of the Network for SHRINE2020-1132 | | |
dwalend | 2111f2ead81 | Clearing todos for SHRINE2020-1132 | | |
dwalend | 7697acfc3db | Removed the properties level from the config for SHRINE2020-1132 | | |
dwalend | 7e6be1d66be | Added the remove permission function for SHRINE2020-1132 and SHRINE2020-1171 | | |
dwalend | 601b1a47542 | Got group access control lists working in the tool for SHRINE2020-1132 and SHRINE2020-1170 | | |
dwalend | c82bb0e6e87 | Tool successfully authorizes access to topics for SHRINE2020-1132 | | |
dwalend | 42ce4d5cfb0 | Working but has no ACLs whatsoever for SHRINE2020-1132 | | |
dwalend | e61fd276b66 | These users don't need the Create permission anymore for SHRINE2020-1132 | | |
dwalend | 07803245c22 | Some cleanup partway through SHRINE2020-1132 | | |
dwalend | cb48ba956d7 | No reason to poll when using the admin's bonafides for SHRINE2020-1132 | | |
dwalend | 055e029af01 | src/main/docker/dev-environments/shrine-hub/network-setup/override.conf | | |
Carl Woolf | e72202c7406 | mention authz module in main pom | | |
Carl Woolf | 293fa9432e0 | first cut at copying in an old bunch of authzn classes, plus servlet config | | |
dwalend | b208519309c | Creating queues in network setup - and lots and lots of confif changes for SHRINE2020-1132 | | |
Carl Woolf | 353f61295d9 | Revert "cherry addition of some authzn files"
This reverts commit ebeb9b44bb0e0cced3d984d42d9cc45e224da74e. | | |
Xav | ebeb9b44bb0 | cherry addition of some authzn files | | |
Carl Woolf | db15bc82de6 | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2
# Conflicts:
# authz/pom.xml | | |
Carl Woolf | c49567c8755 | reset branch to shortly after 400 release, and merge from latest develop | | |
Carl Woolf | a29aa4c0b1f | Merge remote-tracking branch 'origin/develop' into sso-phase2 | | |
dwalend | 50f1284fab7 | Now letting the network setup tool create the queues for SHRINE2020-1132 | | |
dwalend | 3425c179332 | Found it! SHRINE2020-1132 | | |
dwalend | df9e41c146c | More intermediate progress - checked in to share with Marc-Danie for SHRINE2020-1132 | | |
dwalend | 3d997d02b0f | Checkpoint to go see what works and why this does not - for SHRINE2020-1132 | | |
dwalend | 650a0763b04 | Start of drawing data structures through the system for SHRINE2020-1132 | | |
David Walend | 9f9bc4f1338 | Pull request #1344: Feature/SHRINE2020 1132
Merge in SHRINE/shrine from feature/SHRINE2020-1132 to develop
* commit... | | |
dwalend | 2d90f05e0c7 | Changes to docker for SHRINE2020-1257 | | |
David Walend | 127669ee4d2 | Pull request #1342: Feature/SHRINE2020 1249
Merge in SHRINE/shrine from feature/SHRINE2020-1249 to develop
* commit... | | |
dwalend | 2449f6f6ece | Marc-Danie's review comments for SHRINE2020-1249 | | |
dwalend | bf6af63619d | Merge branch 'develop' into feature/SHRINE2020-1249 | | |
dwalend | fbce5cbd559 | Added a slot for a Kafka config in Network for SHRINE2020-1132 | | |
dwalend | e5a51835619 | Revert "Revert "Changes for JDK17 for SHRINE2020-824""
This reverts commit ec019299707c3aba131450cf1a8b5d6fa071b0c8. | | |
dwalend | ec019299707 | Revert "Changes for JDK17 for SHRINE2020-824"
This reverts commit 9257741b207be0c72385d4e54976666980154e66. | | |
David Walend | e83160d122d | Pull request #1343: Changes for JDK17 for SHRINE2020-824
Merge in SHRINE/shrine from feature/SHRINE2020-824 to devel... | | |
dwalend | 9257741b207 | Changes for JDK17 for SHRINE2020-824 | | |
dwalend | ef303fe429b | My review pass for SHRINE2020-1249 | | |
dwalend | ab2672513e1 | Cleanup before the review for SHRINE2020-1249 | | |
dwalend | fbacb007259 | Figured out that the ReadResultRequestAdapter.process method actually does something SHRINE2020-1249 | | |
dwalend | 351017b3381 | Made the CRCClient a part for other things for SHRINE2020-1249 | | |
dwalend | 25d06862e87 | Another step toward making the CRCClient contained instead of a parent for SHRINE2020-1249 | | |
dwalend | cffa8bb33d8 | Factored out the ReadResultRequestAdapter into its own file for SHRINE2020-1249 | | |
David Walend | 0df924e30b3 | Pull request #1341: Bugfix/SHRINE2020 1254
Merge in SHRINE/shrine from bugfix/SHRINE2020-1254 to develop
* commit '... | | |
dwalend | d7b71d4b87a | Ticket to unwind the hack in SHRINE2020-1254 | | |
dwalend | 577a51c3559 | Overrode apache commons text dependency to fix a vulnerability for SHRINE2020-1254 | | |
David Walend | 91e65f6a4f9 | Pull request #1340: Feature/SHRINE2020 1250
Merge in SHRINE/shrine from feature/SHRINE2020-1250 to develop
* commit... | | |
dwalend | 1ab6260ea8e | Got rid of the Adapter superclass for SHRINE2020-1249 | | |
dwalend | 92b6121cccf | Removed need for Adapter class in this really complex unit test for SHRINE2020-1249 | | |
dwalend | dbaadc7bbc7 | Another step towards disolving Adapter for SHRINE2020-1249 | | |
dwalend | 4739b4a491c | Another step toward disolving Adapter for SHRINE20201249 | | |
dwalend | 5d95f00ec9b | Review comments from Marc-Danie for SHRINE2020-1250 | | |
dwalend | e1d16000975 | Got rid of BaseShrineResponse for SHRINE2020-1249 | | |
dwalend | 7632d432867 | Thinning out the Adapter's methods for SHRINE2020-1249 | | |
dwalend | b515e2db8b6 | Simplified and renamed DelegateAdapter to ReadResultRequestAdapter for SHRINE2020-1249 | | |
dwalend | 898b70b5bfb | Removed AbstractReadQueryResultAdapter and refactored around not having it in the codebase for SHRINE2020-1249 | | |
dwalend | 3d69219c416 | Removed a chunk of GLOOP for SHRINE2020-1249 | | |
dwalend | b871b18835c | Deleted an unused class for SHRINE2020-1249 | | |
dwalend | aff639f9166 | Cleared a todo for SHRINE2020-1250 | | |
dwalend | 73dba107629 | Renamed IOScheduler to RepeatedIOTask for SHRINE2020-1250 | | |
dwalend | d007c0cda69 | Got retries working for SHRINE2020-1250 | | |
Carl Woolf | 0d230104ad4 | incorporating shrineAuthorization app under apache | | |
dwalend | 9fd41c15a74 | Some pathfinding in the pom.xml file for SHRINE2020-1250 | | |
dwalend | 2601ffe5145 | I think my parallel exeuction work will survive the cats upgrade for SHRINE2020-1250 | | |
dwalend | 80b7f0c7388 | Switched to a repeatEval task with Signalling to stop for SHRINE2020-1250 | | |
Carl Woolf | 0f8890d5315 | Merge branch 'develop' into sso-phase2 | | |
Carl Woolf | 0a767903f6f | Merge remote-tracking branch 'origin/sso-phase2' into sso-phase2
# Conflicts:
# authz/src/main/java/net/shrine/authz... | | |
Carl Woolf | d7898eaf421 | not currently using authz module | | |
Xav | 3fd9e534ffa | Implement SSO-based authorization; refactored the AuthzProvider methods to take an HttpServletRequest for argument; a... | | |
Carl Woolf | 68be3bae859 | remove specific userId. Add shrineSP.conf-sample | | |
Xav | ea26f9ed1c7 | Push the profile(), isAuthorized(), and canBeDelegate() methods into the AuthzProvider interface and its current one ... | | |
Xav | 082da0dc9db | check whether user is authorized before letting them access the application. If not authorized, throw en exception (v... | | |
Xav | 2a6085e6177 | fix typos in method names; rename some properties, end-points and methods; use gmw3 statically when retrieving user i... | | |
Xav | 40ba137e025 | Add 2 end points which return whether or not the user is fully authorized or can be delegated to; refactor come code ... | | |
Xav | e77fc76e7c0 | call Profiles endpoint for the logged-in user; put it behind Shibb authn | | |
David Walend | d35789ca521 | Pull request #1339: Upgraded to the latest slick release for SHRINE2020-1240
Merge in SHRINE/shrine from feature/SHR... | | |
Xav | 118f6d013fd | hard-code a call to Profiles, which works; move some unneeded classes out of the way; add comments to some methods; f... | | |
Xav | cc407236181 | set up POM files for branch sso-phase2 | | |
Xav | fe79c52b3db | inocuous change, hoping to trigger the snapshot build | | |
Xav | 0bcd50cbb94 | add authz module lifted from shrine-sp module in defunct branch "sso-no-config " as of 7/14/2022 | | |
David Walend | 89d2fc9fd41 | Pull request #1338: Feature/SHRINE2020 1217
Merge in SHRINE/shrine from feature/SHRINE2020-1217 to develop
* commit... | | |
dwalend | b909560bec0 | Upgraded to the latest slick release for SHRINE2020-1240 | | |
dwalend | e279ec939a5 | Clear a comment for SHRINE2020-1217 | | |
dwalend | b8940d305b6 | Cleanup for SHRINE2020-1217 | | |
dwalend | e950fb79173 | Batch of changes to test for the Scala 2.13.9 upgrade for SHRINE2020-1217 | | |
 Ansible Deploy | 20f926439af | Merge release branch release/4.0.0 into master. | | |
Ansible Deploy | 126233c582f | Update POMs with release version 4.0.0. | | |
dwalend | 8dcaa8dafbd | Merge branch 'release/4.0.0' into develop | | |
David Walend | 2928e32309a | Pull request #1337: New term root and user name since the last time we used the jmeter scripts - for SHRINE2020-1148
... | | |
dwalend | ebf7a284e70 | New term root and user name since the last time we used the jmeter scripts - for SHRINE2020-1148 | | |
dwalend | 555b13999ef | New term root and user name since the last time we used the jmeter scripts - for SHRINE2020-1148 | | |
dwalend | 058154fabaa | Parking this bit of progress on SHRINE2020-1219 to switch to release work | | |
Xav | de24abb9c44 | Merge branch 'release/4.0.0' into sso-phase1.1 | | |
 Marc-Danie Nazaire | 7f4ea896853 | Fixed network lifecycle file name in Dockerfile | | |
Carl Woolf | e808c0125e3 | Merge remote-tracking branch 'origin/sso-phase1.1' into sso-phase1.1 | | |
Carl Woolf | 1c12aacc405 | use map/getElse for header logic | | |
Xav | 6ee7b54700e | remove authPing end point to match what is in the develop branch | | |
Xav | 199e2da5d45 | Revert "remove authPing end point"
This reverts commit dd19584882f3dfcf7cc197e19c49f6421ca288e2. | | |
Xav | dd19584882f | remove authPing end point | | |
Marc-Danie Nazaire | 3835e57ef5d | Added default value for webclient session timeout | | |
Marc-Danie Nazaire | a71344f4777 | Merge remote-tracking branch 'origin/sso-phase1.1' into sso-phase1.1 | | |
Marc-Danie Nazaire | 42c6a5379a8 | Renamed WebClientConfig that has the only the webclient configurations to WebClientRawConfig | | |
Xav | fe36cd9a2da | add missing double quotes around key password attribute value | | |
Xav | 479254a1b6f | add list of cipher suites, instead of relying to the older default list | | |
Xav | 92ce392bea1 | revert inactivity interval needed to show idle timer dialog back to 0.7 * session timeout config parameter, instead o... | | |
Marc-Danie Nazaire | 2b0de2d6f9c | Merge remote-tracking branch 'origin/sso-phase1.1' into sso-phase1.1 | | |
Marc-Danie Nazaire | fc569b4ce69 | Modifed session timeout to be a duration and renamed sessionTimeoutMs config to sessionTimeout | | |
| Next → |
