Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Deprecate AuthManager #39

Closed
3 tasks done
s-kostyuk opened this issue Jan 30, 2018 · 3 comments
Closed
3 tasks done

Deprecate AuthManager #39

s-kostyuk opened this issue Jan 30, 2018 · 3 comments
Assignees
@s-kostyuk
Labels
core
Milestone
v0.3

Comments

@s-kostyuk
Copy link
Owner

s-kostyuk commented Jan 30, 2018
edited
Loading

Create a new Service which will manage user authentication, access token management, access control and policies

UPD:

OK, there are some things to do:

  • define an entity that will represent access tokens;
  • define a repository of access tokens;
  • create a service for auth and token management
@s-kostyuk s-kostyuk added the core label Jan 30, 2018
@s-kostyuk s-kostyuk added this to the v0.3 milestone Jan 30, 2018
@s-kostyuk s-kostyuk self-assigned this Jan 30, 2018
This was referenced Jan 30, 2018
Closed
Closed
@s-kostyuk s-kostyuk mentioned this issue Feb 9, 2018
Closed
8 tasks
@s-kostyuk
Copy link
Owner Author

s-kostyuk commented Feb 10, 2018
edited
Loading

Access token will be saved in Session objects (see commit 7c5cc3b)

@s-kostyuk
Copy link
Owner Author

Session objects will be managed by a SessionService (203ebcc). Authentication, authorization and password management will be handled by an AuthService (795ef8b)

@s-kostyuk
Copy link
Owner Author

OK. Looks like it's finished but needs a LOT of testing: #58. Will be merged after #56 will be marked as completed

@s-kostyuk s-kostyuk mentioned this issue Feb 12, 2018
Merged
s-kostyuk added a commit that referenced this issue Feb 12, 2018
@s-kostyuk
Merge pull request #59 from s-kostyuk/auth_service_rebased
ae6e935 
Auth subsystem (rebased)

Implements the new Authentication and Authorization subsystem.

Breaking changes:
- removed an old auth subsystem altogether;
- ApiGateway now uses AuthService instead of AuthManager for authentication and authorization;
- changed a return type of `generate_token` method from the `dpl.utils` package (bdb6ec1).

Enhancements:
- the 'Session' term was introduced;
- Session represents a session of communication between an everpl instance and a client application;
- each Session has an attached access token (key) which is used by client devices for identification and authorization in the system;
- declared SessionRepository and SessionService;
- implemented SessionRepository for in-memory storage of Sessions;
- implemented SessionService;
- declared a new AuthService;
- implemented AuthService on-top of SesionService and UserService from #57;
- prepared a basis for permission checking logic (5f24dd5).

Closes #39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@s-kostyuk s-kostyuk

Labels
core
Projects
None yet
Milestone
v0.3
Development

No branches or pull requests
1 participant
@s-kostyuk