Aiosa
Aiosa
I am thinking about refactoring the tile source creation, since it is so intricate even the docs are wrong, see https://github.com/openseadragon/openseadragon/blob/59645e3a0dbc321be0f503df4e6fb4b156c3fbba/src/tilesource.js#L58 I try to sum up the current behavior: There...
Resolves #11052 Describe changes proposed in this pull request: - `SecurityMapper` no longer retrieves study groups, these have their own mapper - `SecurityRepository` now is parametrized by another generic object,...
The current approach of using tokens with cbio API via `dat.method=oauth2` is the following: The auth provider requests a token from `offlineToken` https://github.com/cBioPortal/cbioportal/blob/9862072228d02ece0ed1252e27c5a2aec017c653/src/main/java/org/cbioportal/security/token/oauth2/OAuth2TokenAuthenticationProvider.java#L75 And the injected `tokenRefreshRestTemplate` is forced to...
Fix #11062 `org.springframework.security.jwt` is not usable since it does not handle valid tokens with `typ="at+jwt"`. Replaced with `nimbus-jose-jwt`. No new tests are needed since this just replaces one library with...
JwtHelper does not handle valid tokens, since it has been deprecated quite a few years ago. see: https://community.auth0.com/t/spring-security-does-not-accept-at-jwt/52965
V6 brings support for custom OAuth2 flows. However, one still needs to manage database of users & their access rights. However, such data can be driven dynamically by external services,...