Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Objective AU-2: Implement the centralized authorization framework necessary for VEDA apps to make app-specific decisions in enabling users and accessing resources #63

Closed
5 tasks done
eroma2014 opened this issue Jul 3, 2024 · 4 comments
Closed
5 tasks done

Objective AU-2: Implement the centralized authorization framework necessary for VEDA apps to make app-specific decisions in enabling users and accessing resources #63

eroma2014 opened this issue Jul 3, 2024 · 4 comments
Labels
PI Objective PI 24.4 Jul 08th - Sept 13th, 2024

Comments

@eroma2014
Copy link
Collaborator

eroma2014 commented Jul 3, 2024
edited
Loading

Motivation

This is the next phase in VEDA Auth Central. For VEDA, we want to make app-specific decisions about who can access what and how to enable it across VEDA Apps. VEDA Auth Central to enable Groups, Attributes, and Roles to hold the relevant information so the apps can make decisions. These components play a crucial role in allowing apps to make informed decisions about user permissions and resource access.

Team & Owner(s)*

Lahiru*, Eroma, Brian

Success Criteria

  • VEDA app authorization requirements are identified and documented.
  • The VEDA authorization needs are designed and implemented.
  • Ability to implement app-level authorization decisions based on user role, group and attributes.
    • Use cases on the VEDA dashboard and STAC are implemented and ready for demo.

Tasks
Preview Give feedback

Stretch goals:

Risks/Dependencies

  • A successful demo depends on VEDA app integration with Auth Central. This would need a cross-functional team effort.
@eroma2014 eroma2014 added the PI 24.4 Jul 08th - Sept 13th, 2024 label Jul 3, 2024
@lahirujayathilake
Copy link
Collaborator

Grafana authorization requirements - #65 (comment)

@eroma2014
Copy link
Collaborator Author

The identified: Groups & Scopes for VEDA Applications

@eroma2014
Copy link
Collaborator Author

The planned AU objective is on pause due the ADR review process. The VEDA teams are in discussion.
ADR documentation

  1. Adding a Custom Layer on Top of Keycloak for Veda Auth Central
  2. Authentication in VEDA Auth Central
  3. Authorization in VEDA Auth Central
  4. Application-Specific Administration in Veda Auth Central
  5. A Customs User Portal for VEDA Auth Central

ADR discussion

  1. Brainstorm Auth Central vs Keycloak ADR #85
  2. Review and refine ADR about Keycloak middleware #87

@eroma2014
Copy link
Collaborator Author

Closing this Objective as all tasks are completed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
PI Objective PI 24.4 Jul 08th - Sept 13th, 2024
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@eroma2014 @lahirujayathilake