Skip to content

OpenConext/OpenConext-Invite

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

542 Commits

.github

.github

 
 

client

client

 
 

docs

docs

 
 

provisioning-mock

provisioning-mock

 
 

server

server

 
 

welcome

welcome

 
 

.gitignore

.gitignore

 
 

.markdownlint.yaml

.markdownlint.yaml

 
 

.markdownlintignore

.markdownlintignore

 
 

.yamllint.yaml

.yamllint.yaml

 
 

CHANGELOG.md

CHANGELOG.md

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

_config.yml

_config.yml

 
 

pom.xml

pom.xml

 
 

template.hbs

template.hbs

 
 

Repository files navigation

Openconext-Invite

Build Status codecov

Getting started

System Requirements

  • Java 17
  • Maven 3

First install Java 17 with a package manager and then export the correct the JAVA_HOME. For example on macOS:

export JAVA_HOME=/Library/Java/JavaVirtualMachines/openjdk-17.jdk/Contents/Home/

Then create the MySQL database:

DROP DATABASE IF EXISTS access;
CREATE DATABASE access CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_ai_ci;
CREATE USER 'access'@'localhost' IDENTIFIED BY 'secret';
GRANT ALL privileges ON `access`.* TO 'access'@'localhost';

Building and running

This project uses Spring Boot and Maven. To run locally, type:

mvn spring-boot:run

To build and deploy (the latter requires credentials in your maven settings):

mvn clean deploy

Mail

In the default application.properties the mail host is localhost and the port is 1025. Run mailpit to capture mails. See https://github.com/axllent/mailpit

Endpoints

https://invite.test.surfconext.nl/ui/swagger-ui/index.html

https://mock.test.surfconext.nl/

https://welcome.test.surfconext.nl/

https://invite.test.surfconext.nl/

Mock

If you want to use the mock-provisioning, add the following metadata in Manage.

SCIM:

"provisioning_type": "scim",
"scim_url": "https://mock.test.surfconext.nl/api/scim/v2",
"scim_user": "user",
"scim_password": "secret",
"scim_update_role_put_method": true

eVA

"provisioning_type": "eva",
"eva_token": "secret",
"eva_guest_account_duration": 30
"eva_url": "https://mock.test.surfconext.nl/eva",

Graph

"provisioning_type": "graph",
"graph_url": "https://mock.test.surfconext.nl/graph/users",
"graph_client_id" : "client_id",
"graph_domain" : "hartingcollege.onmicrosoft.com",
"graph_secret" : "secret",
"graph_tenant": "tenant"

Local endpoints

Login with Mujina IdP and user admin to become super-user in the local environment

http://localhost:8080/ui/swagger-ui/index.html

http://localhost:8081/

http://localhost:4000

http://localhost:3000

Institution Admin

To become an institution admin in invite, add the following values as eduPersonEntitlements using Mujina:

  • urn:mace:surfnet.nl:surfnet.nl:sab:organizationGUID:ad93daef-0911-e511-80d0-005056956c1a
  • urn:mace:surfnet.nl:surfnet.nl:sab:role:SURFconextverantwoordelijke

Technical documentation

https://openconext.github.io/OpenConext-Invite/

Provisioning Secrets

The secrets (passwords / API-keys) used in provisionings are encrypted in OpenConext-Manage using keypairs.

Create private / public keypair

openssl genrsa -traditional -out private_key.pem 2048
openssl rsa -pubout -in private_key.pem -out public_key.pem

Convert private key to pkcs8 format in order to import it from Java

openssl pkcs8 -topk8 -in private_key.pem -inform pem -out private_key_pkcs8.pem -outform pem -nocrypt

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

2 stars

Watchers

9 watching

Forks

1 fork
Report repository

Releases 7

Release 0.0.12 Latest
Apr 16, 2024
+ 6 releases

Packages 4

 
 
 
 

Contributors 7

Languages