Support self-vetting using a self-asserted token #284

MKodde · 2023-02-16T13:43:43Z

For details read the story: https://www.pivotaltracker.com/story/show/184292087
For the MW accompanying this change see: OpenConext/Stepup-Middleware#401

When an Identity is in possession of a vetted self-asserted token. It should be allowed to self-vet successive tokens using that SAT. But only when all tokens are of the SAT type. Once an Identity is in possession of an idenity vetted token (vetted on-premise), all following self vetting tokens must be done with the identity vetted token. For details see: https://www.pivotaltracker.com/story/show/184292087 And: OpenConext/Stepup-SelfService#284

For details read the story: https://www.pivotaltracker.com/story/show/184292087 For the MW accompanying this change see: OpenConext/Stepup-Middleware#401

When an Identity is in possession of a vetted self-asserted token. It should be allowed to self-vet successive tokens using that SAT. But only when all tokens are of the SAT type. Once an Identity is in possession of an idenity vetted token (vetted on-premise), all following self vetting tokens must be done with the identity vetted token. For details see: https://www.pivotaltracker.com/story/show/184292087 And: OpenConext/Stepup-SelfService#284

Shaky212

Looks good, just found a minor dev left-over!

Shaky212 · 2023-02-20T10:00:22Z

src/Surfnet/StepupSelfService/SelfServiceBundle/Tests/Service/SelfVetMarshallerTest.php

@@ -52,6 +52,14 @@ class SelfVetMarshallerTest extends TestCase
     * @var InstitutionConfigurationOptionsService
     */
    private $institutionConfigService;
+    /**


Some left-over?

When an Identity is in possession of a vetted self-asserted token. It should be allowed to self-vet successive tokens using that SAT. But only when all tokens are of the SAT type. Once an Identity is in possession of an idenity vetted token (vetted on-premise), all following self vetting tokens must be done with the identity vetted token. Also: - Security updates where installed - Composer and Symfony lockfiles where updated For details see: https://www.pivotaltracker.com/story/show/184292087 And: OpenConext/Stepup-SelfService#284

MKodde mentioned this pull request Feb 16, 2023

Support self-vetting of self-asserted tokens OpenConext/Stepup-Middleware#401

Merged

MKodde force-pushed the feature/allow-self-vetting-with-sat-authoring-token branch 3 times, most recently from 659400a to 8ad6a03 Compare February 16, 2023 14:44

MKodde changed the title ~~WIP~~ Support self-vetting using a self-asserted token Feb 16, 2023

MKodde added 2 commits February 16, 2023 15:51

Support self-vetting using a self-asserted token

263e512

For details read the story: https://www.pivotaltracker.com/story/show/184292087 For the MW accompanying this change see: OpenConext/Stepup-Middleware#401

Update Symfony security updates

5d618fe

MKodde force-pushed the feature/allow-self-vetting-with-sat-authoring-token branch from 8ad6a03 to 5d618fe Compare February 16, 2023 14:52

MKodde merged commit c9ab903 into develop Feb 16, 2023

MKodde requested review from pmeulen and Shaky212 February 16, 2023 15:03

Shaky212 reviewed Feb 20, 2023

View reviewed changes

MKodde deleted the feature/allow-self-vetting-with-sat-authoring-token branch October 18, 2023 05:32

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Support self-vetting using a self-asserted token #284

Support self-vetting using a self-asserted token #284

MKodde commented Feb 16, 2023 •

edited

Loading

Shaky212 left a comment

Shaky212 Feb 20, 2023

Support self-vetting using a self-asserted token #284

Support self-vetting using a self-asserted token #284

Conversation

MKodde commented Feb 16, 2023 • edited Loading

Shaky212 left a comment

Choose a reason for hiding this comment

Shaky212 Feb 20, 2023

Choose a reason for hiding this comment

MKodde commented Feb 16, 2023 •

edited

Loading