#45 have a set of keys instead of just one #111
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…ttps://github.com/AbsaOSS/login-service into feature/45-have-a-set-of-keys-instead-of-just-one
JaCoCo code coverage report - scala:2.12.17
|
dk1844
reviewed
Jan 9, 2025
There was a problem hiding this comment.
-
I am wondering if it makes sense to distinguish current and old publicKey for the clients -- whether just not give them a set/list (then we can be generic of what we give them in the future and they just have to trust the public keys as a set -- one of them should be the signing one).
-> so I would rather keep thePublicKeyclass intact for the current endpoint and created a new classPublicKeySetthat would serve the new purpose. -
I don't see the functionality where the previous publicKey is phased out after some time has passed after the rotation - and I don't see a configuration for these timeouts either
api/src/main/scala/za/co/absa/loginsvc/rest/controller/TokenController.scala
Outdated
Show resolved
Hide resolved
Comment on lines
93
to
96
| if(secretsOption.isEmpty) | ||
| throw new Exception("Error retrieving username and password from from AWS Secrets Manager") | ||
|
|
||
| val secrets = secretsOption.get |
There was a problem hiding this comment.
I think option processing can be done better without calling Option.get e.g. via
secretsOption.fold(
throw new Exception("Error retrieving username and password from from AWS Secrets Manager")
){ secrets =>
(secrets(usernameFieldName), secrets(passwordFieldName))
}or more explicitly via
secretsOption match {
case None => throw new Exception("Error retrieving username and password from from AWS Secrets Manager")
case Some(secrets) =>
(secrets(usernameFieldName), secrets(passwordFieldName))
}
dk1844
reviewed
Jan 9, 2025
api/src/main/scala/za/co/absa/loginsvc/rest/controller/TokenController.scala
Outdated
Show resolved
Hide resolved
|
#45 a suggestion to add sso to be able to use `aws sso login` to dev-launch LS
…ttps://github.com/AbsaOSS/login-service into feature/45-have-a-set-of-keys-instead-of-just-one
TheLydonKing
changed the title
dk1844
reviewed
Jan 15, 2025
api/src/main/scala/za/co/absa/loginsvc/rest/service/jwt/JWTService.scala
Outdated
Show resolved
Hide resolved
api/src/main/scala/za/co/absa/loginsvc/rest/service/jwt/JWTService.scala
Outdated
Show resolved
Hide resolved
api/src/main/scala/za/co/absa/loginsvc/rest/service/jwt/JWTService.scala
Outdated
Show resolved
Hide resolved
dk1844
reviewed
Jan 16, 2025
api/src/main/scala/za/co/absa/loginsvc/utils/AwsSecretsUtils.scala
Outdated
Show resolved
Hide resolved
TheLydonKing
deleted the
feature/45-have-a-set-of-keys-instead-of-just-one
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Release Notes:
closes #45