Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Spike: Migration guide from LB3 - Authentication & authorization #3719

Closed
1 of 9 tasks
bajtos opened this issue Sep 12, 2019 · 4 comments
Closed
1 of 9 tasks

Spike: Migration guide from LB3 - Authentication & authorization #3719

bajtos opened this issue Sep 12, 2019 · 4 comments
Assignees
@raymondfeng
Labels
Authentication Authorization Docs Migration spike
Milestone
Jan 2020

Comments

@bajtos
Copy link
Member

bajtos commented Sep 12, 2019
edited by raymondfeng
Loading

In a follow-up for #3718, we should document how to migrate Authentication & Authorization features from LB3-style to LB4. Let's write an outline of a migration guide for LB3 users - an initial "seed" version that we can incrementally improve later.

Acceptance criteria

  • Review different aspects of auth & auth provided by LB3:

    • Authentication using User and AccessToken
    • Accessing the current user via options argument injected by strong-remoting
    • Authorization based on ACL, Role and strong-remoting metadata describing access-type of individual methods. Scope-based authorization.
    • API Explorer

  • Update https://loopback.io/doc/en/lb4/Understanding-the-differences.html with any missing details, replace TBD markers with real content. Add new table rows to capture missing features.

  • Update the draft of the Migration guide (see Spike: Migration guide from LB3 - General runtime #3718), create a placeholder section for each aspect/feature we need to document --> see docs/site/migration/auth

  • If we know the instructions for migrating a certain aspect/feature, then write down the high level instructions as part of this spike.

  • For the remaining sections, create follow-up issues and reference them from the section text.

While this story is a spike task, the skeleton of the migration guide should be landed and published in our docs. The spike aspect is related to the fact that we don't know the scope of the migration guide, which parts are easy to document and which will require further research.

Out of scope
@bajtos bajtos mentioned this issue Sep 12, 2019
Closed
14 tasks
@dhmlau
Copy link
Member

dhmlau commented Nov 15, 2019

@raymondfeng, I'm assigning this to you, since we believe you know about the authentication in LB3 & LB4 the most. Thanks!

@agnes512 agnes512 mentioned this issue Dec 2, 2019
Closed
19 tasks
@agnes512 agnes512 added this to the Dec 2019 milestone Dec 2, 2019
@dhmlau dhmlau added Slipped and removed 2019Q4 labels Dec 13, 2019
@dhmlau dhmlau modified the milestones: Dec 2019, Jan 2020 Dec 19, 2019
@dhmlau dhmlau mentioned this issue Jan 2, 2020
Closed
21 tasks
@emonddr emonddr mentioned this issue Jan 7, 2020
Closed
24 tasks
@dhmlau
Copy link
Member

dhmlau commented Jan 20, 2020

See PR: #4440

@raymondfeng
Copy link
Contributor

raymondfeng commented Jan 27, 2020
edited
Loading

Follow-up stories:

@dhmlau dhmlau mentioned this issue Jan 29, 2020
Closed
7 tasks
@emonddr
Copy link
Contributor

emonddr commented Jan 30, 2020

Closing this spike issue, since @raymondfeng has opened up follow-up stories and agreed this issue can now be closed. :)

@emonddr emonddr closed this as completed Jan 30, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@raymondfeng raymondfeng

Labels
Authentication Authorization Docs Migration spike
Projects
None yet
Milestone
Jan 2020
Development

No branches or pull requests
5 participants
@raymondfeng @bajtos @emonddr @dhmlau @agnes512