Major refactoring the lower levels of the api-auth module. Enables … #1
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
… to handle missing scopes for a user regarding the requesting application and allows the PKCE mechanism. - Drops the feign client dependencies for the login and authorization process since the workarounds and interceptors required way to much effort to enhance the code and keep it maintainable and readable. There is a new service layer between the api calls which are made within the client package and the AuthorizationFlowHandler. The different services make it easier to test and to maintain. Now okhttp3 is used to make the HTTP calls towards the web forms and authorization api in the respective clients. Special handling or mimicing is much easier for those cases when done on the lowest level possible. Tokens are still retrieved using feign clients but this will be targeted in the future since those calls are straight forward for now and not a bigger issue. - Domain models changed to have a simpler way of dealing with a single authentication flow. There is a single POJO holding all the information required to proceed in the process. - Changed the authorization flow crucial exceptions to inherit from Exception instead of RuntimeException to explicitly have them handled within the services and the main handler. - Mostly of the old WireMock stubbings got replaced by new use case specific ones which were recorded using WireMock in recorder mode. - Enhanced the config parser in `mbdev-samples` to allow additional parameters within a provided config file. Also when adding passing the optional argument `-DconfigSuffix` a different config files can be used. e.g. -DconfigSuffix=dev would result in a config file lookup mbdev-config-dev.json. - Outlook: Rethink the authorization POJO and the different possible consents which are currently there.
jenpet
force-pushed
the
REWRITE_LOW_LEVEL
branch
from
8311e21
to
ff0f51c
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
…it to handle missing scopes for a user regarding the requesting application and allows the PKCE mechanism.
mbdev-samplesto allow additional parameters within a provided config file. Also when adding passing the optional argument-DconfigSuffixa different config files can be used. e.g. -DconfigSuffix=dev would result in a config file lookup mbdev-config-dev.json.