-
Notifications
You must be signed in to change notification settings - Fork 0
Open
Description
CERN IT requested to reduce the number of login forms, Bartek and Enrico recommends to use Enrico's app for this.
https://yccres-dev2.app.cern.ch/app/res/login?action=3rd-party-login&client=HELPER_APP
Redirects to
https://ycc.app.cern.ch/external_login?logon_id=bravin&token=...
# Enrico also created HELPER_APP_TEST, HELPER_APP_DEV, HELPER_APP_LOCAL
Then, in the backend, use Enrico's application to validate/check tokens.
This also means that Keycloak will be gone, with all the things it does currently, such as
- Validating / refreshing tokens => no refresh now, backend validates with calling Enrico's API
- No roles are sent by Keycloak, need an alternative solution (what keys does the user have, is it an editor/admin) => extra work on the backend
- No frontend library is available => need to manually develop the required functionality
- Last, but not least, it needs to be thoroughly tested that all the redirects etc work as expected (since the KC library in the past takes care of a lot of edge cases)
Reactions are currently unavailable
Metadata
Metadata
Assignees
Labels
No labels