The NYU Libraries' Login application is an OAuth2 server that provides registered clients with a set of user metadata that can be used for authorization decisions and feature provision.
Users can authenticate via the services listed below:
- NYU Shibboleth identity provider (i.e. NYU NetIDs)
- New School LDAP server (i.e. New School NetIDs)
- NYU Affiliates and Consortium Aleph patron accounts
The core user data provided is:
- Username
- Last login date
Users can have several identities, each of which contain their own set of metadata. Below is a table listing the identities provided for a given login type.
| Login Type | Identities |
|---|---|
| NYU NetID | NYU Shibboleth Aleph |
| New School NetID | New School LDAP Aleph |
| NYU Affiliates and Consortium Aleph patron ID | Aleph |
| Twitter username |
For example, a user who logs in via NYU's Shibboleth identity provider will have an NYU Shibboleth identity and also will have an Aleph identity. A user who logs in via the New School's LDAP server will have a New School LDAP identity and an Aleph identity. A user who logs in via Aleph or Twitter, will only have an Aleph ors Twitter identity.
Run tests together:
bundle exec rake
or separately:
bundle exec rspec
bundle exec cucumber
or run tests in a docker container:
RAILS_ENV=test docker-compose run dev rake
or
docker-compose run test
Logging on unicorn container is to stdout/stderr for kubernetes compatibility. Log level defaults to warn but is configurable via RAILS_LOG_LEVEL