MapStore2 icon indicating copy to clipboard operation
MapStore2 copied to clipboard
verified publisher icon geosolutions-it

OPEN ID - Design Keycloak security filter

Open ale-cristofori opened this issue 3 years ago • 3 comments

Description

In order to have Keycloak to transpose in the authentication/authorization policies defined by the client in its workflow we need to define a filter configuration, for users, groups and roles. Such configuration will have to adaptable to Geostore and Keycloak. This task will require dev work on the MapStore backend library for the transposition of the configuration and the design of a dedicated Keycloak filter to be used in the MapStore configuration.

Acceptance criteria

  • [x] Keycloak will be able to implement the filter configuration as actual authentication/authorization policies.
  • [x] The filter will be configurable by simply passing to it the JSON file available once the client configuration is done

Other useful information

ale-cristofori avatar May 13 '22 08:05 ale-cristofori

opened pr on master

taba90 avatar Jun 13 '22 12:06 taba90

Linked PR is https://github.com/geosolutions-it/geostore/pull/282

ale-cristofori avatar Jul 18 '22 15:07 ale-cristofori

As of today 04/08/2022, the testing of this feature on our dev environment is dependent on time constraints dictated by our resources availability, estimation on the setup of the testing environment has been given by @offtherailz, we are now waiting for any free MapStore resource who can work on this.

see https://github.com/geosolutions-it/MapStore2/issues/8429

ale-cristofori avatar Aug 04 '22 14:08 ale-cristofori

The Keycloak OPEN ID has been tested on client istance.

ElenaGallo avatar Sep 21 '22 09:09 ElenaGallo