Merge pull request #918 from uc-cdis/chore/docs

chore(docs): update some docs, also make sure to use jsonify for corr…
uc-cdis · May 25, 2021 · cd77029 · cd77029
2 parents ca8281c + b74efbc
commit cd77029
Show file tree

Hide file tree

Showing 3 changed files with 20 additions and 7 deletions.
diff --git a/.secrets.baseline b/.secrets.baseline
@@ -3,7 +3,7 @@
     "files": "poetry.lock",
     "lines": null
   },
-  "generated_at": "2021-05-19T20:49:29Z",
+  "generated_at": "2021-05-25T15:36:55Z",
   "plugins_used": [
     {
       "name": "AWSKeyDetector"
@@ -122,31 +122,31 @@
       {
         "hashed_secret": "1348b145fa1a555461c1b790a2f66614781091e9",
         "is_verified": false,
-        "line_number": 1914,
+        "line_number": 1927,
         "type": "Private Key"
       },
       {
         "hashed_secret": "bb8e48bd1e73662027a0f0b876b695d4c18f5ed4",
         "is_verified": false,
-        "line_number": 1914,
+        "line_number": 1927,
         "type": "Secret Keyword"
       },
       {
         "hashed_secret": "7861ab65194de92776ab9cd06d4d7e7e1ec2c36d",
         "is_verified": false,
-        "line_number": 1994,
+        "line_number": 2007,
         "type": "Secret Keyword"
       },
       {
         "hashed_secret": "d6b66ddd9ea7dbe760114bfe9a97352a5e139134",
         "is_verified": false,
-        "line_number": 2016,
+        "line_number": 2029,
         "type": "JSON Web Token"
       },
       {
         "hashed_secret": "98c144f5ecbb4dbe575147a39698b6be1a5649dd",
         "is_verified": false,
-        "line_number": 2028,
+        "line_number": 2041,
         "type": "Base64 High Entropy String"
       }
     ],

diff --git a/docs/fence_shibboleth.md b/docs/fence_shibboleth.md
@@ -19,7 +19,7 @@ The `/authorize` endpoint accepts the query parameters `ipd` and `shib_idp`. If
 
 The `/login/shib` endpoint accepts the query parameter `shib_idp`. Fence checks this parameter to know which Shibboleth identity provider to use (by default, if no `shib_idp` is specified, NIH is used by default).
 
-After the user logs in and is redirected to `/login/shib/login`, we get the `eppn` (EduPerson Principal Name) from the request headers to use as username. If the `eppn` is not available, we use the `persistent-id` instead.
+After the user logs in and is redirected to `/login/shib/login`, we get the `eppn` (EduPerson Principal Name) from the request headers to use as username. If the `eppn` is not available, we use the `persistent-id` (or `cn`) instead.
 
 ![Shibboleth Login Flow](images/seq_diagrams/shibboleth_flow.png)
 

diff --git a/openapis/swagger.yaml b/openapis/swagger.yaml
@@ -1493,6 +1493,19 @@ paths:
             schema:
               $ref: '#/components/schemas/GoogleServiceAccountProjectAccess'
         description: ServiceAccount fields to update
+  /google/primary_google_service_account:
+    post:
+      tags:
+        - google
+      description: |
+        Force the creation of the User's Primary Google Service Account instead of
+        relying on lazy creation at first time of Google Data Access.
+      responses:
+        '200':
+          description: |
+            success, created User's Primary Google Service Account or already exists
+        '401':
+          description: 'invalid token provided (or none provided)'
   /.well-known/jwks:
     get:
       tags: