Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Change Authentication from LDAP to Keycloak #71

Closed
gkirchner opened this issue Nov 4, 2022 · 0 comments · Fixed by #160
Closed

Change Authentication from LDAP to Keycloak #71

gkirchner opened this issue Nov 4, 2022 · 0 comments · Fixed by #160
Assignees
@oliveratfoodcoopx

Comments

@gkirchner
Copy link
Collaborator

As user and admin I want to have an authentication service and identity management which allows to have one user accout for several software application, use the email address instead of the derived user id from first and last name and be able to change the email address in self service.

To accomplish this (and it's general flexibility) we want to integrate the Keycloak server (https://www.keycloak.org/) into the Tapir project.

There is already some reusable code from MILA: https://github.com/MILA-Wien/collectivo/blob/main/collectivo/auth/middleware.py, but the account creation is still not done within Tapir but users are expected to create an account outside of Tapir. We need to do it during the registration wizard.

We can still use LDAP as the storage backend for Keycloak but this is not mandatory. If there are good reasons to use another backend this should be possible (this is anyway more a question of operation than development).
oliveratfoodcoopx added a commit that referenced this issue Nov 9, 2022
@oliveratfoodcoopx
adds basic Keycloak Docker integration
7780000 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 9, 2022
@oliveratfoodcoopx
- adds python-keycloak module
40b5f0d 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 9, 2022
@oliveratfoodcoopx
adds to settings basic Keycloak config
1570f84 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 16, 2022
@oliveratfoodcoopx
- adds keycloak service to project (with example config - not fully t…
4066b1c 
…ested)

- adds commented version of future solution (based on a new authentication
  backen, without new models/cache nor improvement
- leftovers to be removed once testing suite is (at least partially) complete

Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 17, 2022
@oliveratfoodcoopx
- cleanup unused lines of code
b6f7d29 
- updates backend so it considers minimal authentication parameters
- updates unittests to consider more authentication flows

Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 17, 2022
@oliveratfoodcoopx
backend handles situation when user is disabled
d4465d1 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 23, 2022
@oliveratfoodcoopx
- removes leftovers
ba266f8 
- keycloak UTs updates (based on new and improved flows)

Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 23, 2022
@oliveratfoodcoopx
adds python module webtest
dc34e96 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 23, 2022
@oliveratfoodcoopx
adds django_webtest python module to project
9ef44d8 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 28, 2022
@oliveratfoodcoopx
Merge branch 'master' into feature/#71/keycloak-integration
cb7e23a 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Nov 30, 2022
@oliveratfoodcoopx
- adds basic flow integration test for Registrion Flow
8ce4bb4 
- replaces print by self.stdout.write within command
- replaces date.today calls by timezone ones in registration_view
- adds test to check for username validation

Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Dec 1, 2022
@oliveratfoodcoopx
trying to define more factories and unittests so we can have a suite
d5fc6be 
before really switching to Keoycloak

Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Dec 7, 2022
@oliveratfoodcoopx
Merge branch 'master' into feature/#71/keycloak-integration
20b2866 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Dec 7, 2022
@oliveratfoodcoopx
up to date branch
2c549ea 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Dec 7, 2022
@oliveratfoodcoopx
adds more unittests to check for more permissions
87e8bd2 
Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Dec 19, 2022
@oliveratfoodcoopx
- handles Permissions within User model
b1deae8 
	- adds several tests to check for permissions within templates

Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Dec 19, 2022
@oliveratfoodcoopx
Merge branch 'master' into feature/#71/keycloak-integration
2474b55
oliveratfoodcoopx added a commit that referenced this issue Dec 22, 2022
@oliveratfoodcoopx
- adds User.set_password unittest
ed95c5f 
- defines settings variable to control admin-related keycloak API

Ref: #71
oliveratfoodcoopx added a commit that referenced this issue Dec 22, 2022
@oliveratfoodcoopx
adds missing (not implemented) method that needs to be connected to
9daac08 
the Keycloak API

Ref: #71
@oliveratfoodcoopx oliveratfoodcoopx mentioned this issue Dec 22, 2022
Merged
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
adds basic Keycloak Docker integration
594ac92 
Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
- adds python-keycloak module
8101325 
Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
adds to settings basic Keycloak config
3332672 
Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
- adds keycloak service to project (with example config - not fully t…
087900e 
…ested)

- adds commented version of future solution (based on a new authentication
  backen, without new models/cache nor improvement
- leftovers to be removed once testing suite is (at least partially) complete

Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
- cleanup unused lines of code
486e948 
- updates backend so it considers minimal authentication parameters
- updates unittests to consider more authentication flows

Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
backend handles situation when user is disabled
764929d 
Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
- removes leftovers
e7c7668 
- keycloak UTs updates (based on new and improved flows)

Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
adds python module webtest
3c32c3f 
Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
adds django_webtest python module to project
95f440a 
Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
- adds basic flow integration test for Registrion Flow
fd6ef4a 
- replaces print by self.stdout.write within command
- replaces date.today calls by timezone ones in registration_view
- adds test to check for username validation

Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
trying to define more factories and unittests so we can have a suite
7759501 
before really switching to Keoycloak

Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
up to date branch
0eab02b 
Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
adds more unittests to check for more permissions
63b951a 
Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
- handles Permissions within User model
50936e8 
	- adds several tests to check for permissions within templates

Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
- adds User.set_password unittest
71b3b38 
- defines settings variable to control admin-related keycloak API

Ref: #71
mk2301 pushed a commit that referenced this issue Jan 9, 2023
@oliveratfoodcoopx @mk2301
adds missing (not implemented) method that needs to be connected to
6d627f2 
the Keycloak API

Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
adds basic Keycloak Docker integration
6ab8914 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
- adds python-keycloak module
5af2171 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
adds to settings basic Keycloak config
f68344e 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
- adds keycloak service to project (with example config - not fully t…
c59b929 
…ested)

- adds commented version of future solution (based on a new authentication
  backen, without new models/cache nor improvement
- leftovers to be removed once testing suite is (at least partially) complete

Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
- cleanup unused lines of code
51a329b 
- updates backend so it considers minimal authentication parameters
- updates unittests to consider more authentication flows

Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
backend handles situation when user is disabled
6217636 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
- removes leftovers
fc2f217 
- keycloak UTs updates (based on new and improved flows)

Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
adds python module webtest
834ef36 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
adds django_webtest python module to project
98c0d64 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
- adds basic flow integration test for Registrion Flow
d891ee9 
- replaces print by self.stdout.write within command
- replaces date.today calls by timezone ones in registration_view
- adds test to check for username validation

Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
trying to define more factories and unittests so we can have a suite
967c53e 
before really switching to Keoycloak

Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
up to date branch
e18bee7 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
adds more unittests to check for more permissions
f1892f0 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
- handles Permissions within User model
f8f1ee8 
	- adds several tests to check for permissions within templates

Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
- adds User.set_password unittest
a0fa16b 
- defines settings variable to control admin-related keycloak API

Ref: #71
mk2301 pushed a commit that referenced this issue Feb 1, 2023
@oliveratfoodcoopx @mk2301
adds missing (not implemented) method that needs to be connected to
4f5b01b 
the Keycloak API

Ref: #71
@mk2301 mk2301 linked a pull request Feb 15, 2023 that will close this issue
#71: Keycloak Integration #160
Merged
mk2301 pushed a commit that referenced this issue Feb 16, 2023
@oliveratfoodcoopx @mk2301
#71: Keycloak Integration
331c3e2 
Ref: #71
mk2301 pushed a commit that referenced this issue Feb 16, 2023
@oliveratfoodcoopx
#71: Keycloak Integration (#160)
78d8891
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@oliveratfoodcoopx oliveratfoodcoopx

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

#71: Keycloak Integration FoodCoopX/wirgarten-tapir
2 participants
@gkirchner @oliveratfoodcoopx