airavata-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Marcus Christie (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (AIRAVATA-2775) Load user roles from Keycloak for each user in the migration script
Date Fri, 04 May 2018 13:51:00 GMT

    [ https://issues.apache.org/jira/browse/AIRAVATA-2775?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16463895#comment-16463895
] 

Marcus Christie commented on AIRAVATA-2775:
-------------------------------------------

Initially I thought to add a getUserRoles method to IamAdminServices, but since we're moving
away from role-based authorization it doesn't really make sense to add that functionality
to the IamAdminServices interface. Instead I'll just add the method to TenantManagementKeycloakImpl
and use it directly (instead of through the TenantManagementKeycloak interface) in the AiravataDataMigrator.

> Load user roles from Keycloak for each user in the migration script
> -------------------------------------------------------------------
>
>                 Key: AIRAVATA-2775
>                 URL: https://issues.apache.org/jira/browse/AIRAVATA-2775
>             Project: Airavata
>          Issue Type: Story
>            Reporter: Marcus Christie
>            Assignee: Marcus Christie
>            Priority: Major
>
> These will be used to assign users to various groups.
> * 'gateway-user' role -> "Gateway Users" group
> * 'admin' role -> "Admins" group
> * 'admin-read-only' role -> "Read Only Admins" group
> TODO
> * [ ] Add a getUserRoles to TenantManagementKeycloakImpl to return a list of roles for
the user
> * [ ] Loop over all user profiles and load their roles. Put 'gateway-user' users into
one list, 'admin' users in another list, etc.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message