refactor(cmd-api-server): pull OAuth2 endpoint scopes from openapi.json #2693
Assignees
Labels
API_Server
Breaking_V2
Changes that can only be made with the release of v3.0.0 due to them being breaking changes.
P2
Priority 2: High
Security
Related to existing or potential security vulnerabilities
Milestone
Comments
petermetz
added
API_Server
Breaking_V2
|
Hello @jagpreetsinghsasan I would like to work on this one, Thank you |
jagpreetsinghsasan
moved this from Todo
to In Progress
in Cacti_Scrum_Project_v2_Release
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Aug 7, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
5 tasks
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Aug 7, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
moved this from In Progress
to In review
in Cacti_Scrum_Project_v2_Release
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Aug 7, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Aug 21, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Sep 6, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Sep 6, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Sep 6, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Sep 6, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
pushed a commit
to aldousalvarez/cactus
that referenced
this issue
Sep 6, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <“aldousss.alvarez@gmail.com”>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Sep 6, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Sep 6, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
petermetz
pushed a commit
to aldousalvarez/cactus
that referenced
this issue
Oct 4, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
aldousalvarez
added a commit
to aldousalvarez/cactus
that referenced
this issue
Nov 28, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
petermetz
pushed a commit
to aldousalvarez/cactus
that referenced
this issue
Dec 1, 2024
Primary Changes ---------------- 1. added OAuth2 security endpoints scopes to openapi.json 2. added a test to make sure if the scopes are indeed getting pulled from the spec file Fixes hyperledger-cacti#2693 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com> 1. Please also refactor the third endpoint (prometheus metrics) accordingly 2. Also please extend the test case with each tokens having specific scopes and then assert that the tokesn with the correct scopes work and the ones that don't have the correct scopes do not even when they are otherwise valid tokens. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
github-project-automation
bot
moved this from In review
to Done
in Cacti_Scrum_Project_v2_Release
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
Acceptance Criteria
The text was updated successfully, but these errors were encountered: