You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@airavata.apache.org by "Marcus Christie (JIRA)" <ji...@apache.org> on 2018/05/04 13:51:00 UTC
[jira] [Commented] (AIRAVATA-2775) Load user roles from Keycloak
for each user in the migration script
[ https://issues.apache.org/jira/browse/AIRAVATA-2775?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16463895#comment-16463895 ]
Marcus Christie commented on AIRAVATA-2775:
-------------------------------------------
Initially I thought to add a getUserRoles method to IamAdminServices, but since we're moving away from role-based authorization it doesn't really make sense to add that functionality to the IamAdminServices interface. Instead I'll just add the method to TenantManagementKeycloakImpl and use it directly (instead of through the TenantManagementKeycloak interface) in the AiravataDataMigrator.
> Load user roles from Keycloak for each user in the migration script
> -------------------------------------------------------------------
>
> Key: AIRAVATA-2775
> URL: https://issues.apache.org/jira/browse/AIRAVATA-2775
> Project: Airavata
> Issue Type: Story
> Reporter: Marcus Christie
> Assignee: Marcus Christie
> Priority: Major
>
> These will be used to assign users to various groups.
> * 'gateway-user' role -> "Gateway Users" group
> * 'admin' role -> "Admins" group
> * 'admin-read-only' role -> "Read Only Admins" group
> TODO
> * [ ] Add a getUserRoles to TenantManagementKeycloakImpl to return a list of roles for the user
> * [ ] Loop over all user profiles and load their roles. Put 'gateway-user' users into one list, 'admin' users in another list, etc.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)