...
- Acting components
- User
- Identification provider
- ODLUX Client
- SDN-R server
- Identity provider
- authentication
- providing key for registered users indicating level of rights (group)
- https://github.com/ory/kratos
- SDN-R Server
- data-provider
- Provide list of authentication providers to ODLUX Client
- Provide internal group for user to ODLUX Client
- CCSDK bundles
- do authorization on URL level
- shiro V1.3.2 of ODL Aluminium (https://github.com/apache/shiro)
- aaf-cadi (https://github.com/onap/aaf-cadi)
- → OauthV2TokenRealm required
- aaf-cadi (https://github.com/onap/aaf-cadi)
- data-provider
- ODLUX Client
- authorization for GUI
- Use list of identity providers to offer login
- Get key with identity and group of user from identity provider into ODLUX Userspace
- Get SDN-R User group from server
- User user group to enable/disable functions in ODLUX GUI
OAuth Provider
request | params | response | description |
---|---|---|---|
GET /oauth/providers | OAuthProvider array | ||
GET /oauth/redirect | TokenResponse | ||
PlantUML Macro |
---|
@startuml GUI GUI as gui SDNC SDNC as sdnc User User as user OAUthProvider OAUthProvider as oauth GUIgui -> SDNCsdnc: GET /oauth/providers SDNCsdnc --> GUIgui: providers array User -> GUIgui: Select OAuth provider GUIgui -> OAUthProvideroauth: /loginForm OAUthProvideroauth --> GUIgui: redirect to redirectURI GUIgui -> SDNCsdnc: GET /oauth/redirect with params @enduml |
...