opendut icon indicating copy to clipboard operation
opendut copied to clipboard
verified publisher icon eclipse-opendut

Authentication for OpenDuT network

Open reimarstier opened this issue 2 years ago • 0 comments

To secure the system against unauthenticated access all components need to check the users identity and access privilege. For this purpose OpenID connect (OIDC) shall be used to authenticate users against a common identity provider - for which we use Keycloak. Each of our components shall therefore implement the OIDC protocol to ensure users are authenticated.

  • [x] #26
  • [x] #101
  • [x] #31
  • [x] #32
  • [x] #112
  • [x] #218
  • [x] #200
  • [x] #160
  • [x] #132
  • [x] #190
  • [x] #191
  • [ ] #133
  • [x] #33
  • [x] #149
  • [x] #189
  • [x] #201

For testing purposes the clients CLEO and EDGAR shall be able to craft access tokens with necessary authorization roles/scopes without contacting Keycloak. This crafted token shall not be checked in CARL when running in test mode.

reimarstier avatar Dec 21 '23 09:12 reimarstier