generated from bcgov/quickstart-openshift
-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
deps: update babel for subdep vulnerability #599
Merged
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
DerekRoberts
requested review from
craigyu,
RMCampos,
mgaseta and
SLDonnelly
as code owners
November 6, 2023 07:07
DerekRoberts
changed the title
deps: update babel for subdep vulterability
deps: update babel for subdep vulnerability
Nov 6, 2023
craigyu
pushed a commit
that referenced
this pull request
Nov 8, 2023
* chore: improve docs and oracle development (#534) * docs: update readme file with latest notes No issue-related. This change updates the repo readme file which contains information of the existing services and applications. * docs: improve documentation in general No issue * feat: allows oracle api to run and develop from docker No issue * test: vegetation code test improvements * chore: fix checkstyle * ci: add env var for oracle ca certs file * feat: remove jssecacerts file and add script for fetching it --------- Co-authored-by: Derek Roberts <[email protected]> * fix: wrong keycloak realm url for prod (#580) * fix: wrong keycloak realm url for prod issue #553 * ci: disable triggers temporarily * fix: spring pagination is zero-based (#584) * fix: spring pagination is zero-based issue #582 * fix: get triggers back wrongly merged in a previous pr * fix: default page index value for swagger when finding seedlots by user issue #582 * feat: backend and oracle decode fam cognito token issue #481 * [Snyk] Security upgrade axios from 1.4.0 to 1.6.0 (#592) * fix: frontend/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6032459 * package-lock.json --------- Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * Update babel deps for subdep vulterability (#599) * Bump vitest for subdep get-func-name vulerability (#601) * Use override to bring postcss up to patched ver (#606) * Feat/386 enable oracle api to send logs to opensearch (#436) * feat: creating and adjusting scripts * feat: creating new config files for fluentbit * feat: adjusting scripts * fix: fixing comment * fix: adjusting property * fix: fixing fluentbit deploy path on the workflows * feat: scape double quotes for file logging issue #386 * feat: update log patterns and logging levels issue #386 * ci: add opensearch oracle-api environment flag issue #386 * feat: add oracle-api config files for fluentbit issue #386 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Craig Yu <[email protected]> * feat: add user id provided by the idp and email * chore: remove comment with real name issue #481 * chore: remove comment with real information issue #481 * ci: add build arg for backend issue #481 * ci: add build arg for backend round 2 issue #481 * ci: add build arg for backend issue #481 * feat: add default aws cognito issuer uri issue #481 * ci: add missing env var to oracle api issue #481 * ci: fix env var for postgres and oracle issue #481
RMCampos
added a commit
that referenced
this pull request
Nov 9, 2023
* Feat/480 replace keycloak by fam for authentication on fe (#578) * feat: replace keycloak by fam Issue #480 These changes are the first changes to get FAM working with SPAR since FAM is the preferred authentication library for the ministry applications. * feat: remove context not required anymore Issue #480 This change removes the Context Authentication file created when using keycloak, not needed anymore, because now there's an authentication service created that will handle everything. * feat: fam working locally in the front end Issue #480 This change updates files in the front end in order of getting it working with FAM and AWS Cognito authentication. Note that this is a working in progress, which means you may find some console log. * feat: disable authentication in the back end Issue #480 This commit update the back end service to remove all authentication and authorization handling for now, since it will be tackled in a future task issue #481. * fix: wrong docker compose yml identation Issue #480 Simply fix the docker-compose.yml file identation. * feat: disable backend security Issue #480 This change disables the security in the back end REST api and allows actuator endpoints to be accessed. * feat: add context provider for a better usage Issue #480 This change get back all context-related files and components to work closely with what we have for keycloak. * feat: create header between FE and BE Issue #480 A simple header was created to enable users to keep using SPAR client with usual activities until we get #481 finished. * test: fix user authentication helper test Issue #480 Fix tests and javadoc broken checkstyle. * test: split context and provider and fix land test Issue #480 Having context and provider splited into two files make it possible to mock values for testing components. * tests: get all tests passing related to auth Issue #480 Now all tests are working and passing. There's still issues related to favourite activities mock and morage js, though. * feat: remove old use auth hook created Issue #480 Remove use auth and replace it by use context with the authentication context name. * feat: add runtime hint for http servlet request Issue #480 Runtime Hints required for graal vm and cloud native. * chore: add javadoc comments Issue #480 * feat: add runtime hints for cloud native Issue #480 * ci: add new env vars to workflows Issue #480 Yep, just that. * feat: prevent access from missing env var Issue #480 * chore: fix warnings and issues raised by vscode Issue #480 * test: add user authentication test for temporary case * VITE_AWS_DOMAIN * VITE_AWS_DOMAIN try 2 * VITE_AWS_DOMAIN try 3 * chore: remove unused code issue #480 * chore: remove all keycloak related references issue #480 * chore: improve vite init global issue #480 * ci: crated docker compose test file and fix dockerfiles issue #480 * feat: improve login redirects for a better ux issue #480 * feat: add try catch on signout issue #480 * feat: remove await from logout * Test heap size builds * Dial down max-old-space-size * feat: add refresh token function issue #480 * feat: get cypress working with FAM issue #480 * chore: fix authentication issues on oracle-api * feat: improve authentication for business bce-id issue #480 * test: get cypress working with fam issue #480 * test: update cypress test workflow to use oracle dev issue #480 * chore: remove uneeded variable from landing page * fix: refactor routing, fix cypress, housekeeping * fix: remove code smells * fix: change sonar exclusion * feat: sign out feature redirect issue issue #480 * test: fix cypress test user name issue #480 * fix: remove try catch blocks * fix: remove role req --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * feat: replace jwt decode and roles to use fam authorization on be (#585) * chore: improve docs and oracle development (#534) * docs: update readme file with latest notes No issue-related. This change updates the repo readme file which contains information of the existing services and applications. * docs: improve documentation in general No issue * feat: allows oracle api to run and develop from docker No issue * test: vegetation code test improvements * chore: fix checkstyle * ci: add env var for oracle ca certs file * feat: remove jssecacerts file and add script for fetching it --------- Co-authored-by: Derek Roberts <[email protected]> * fix: wrong keycloak realm url for prod (#580) * fix: wrong keycloak realm url for prod issue #553 * ci: disable triggers temporarily * fix: spring pagination is zero-based (#584) * fix: spring pagination is zero-based issue #582 * fix: get triggers back wrongly merged in a previous pr * fix: default page index value for swagger when finding seedlots by user issue #582 * feat: backend and oracle decode fam cognito token issue #481 * [Snyk] Security upgrade axios from 1.4.0 to 1.6.0 (#592) * fix: frontend/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6032459 * package-lock.json --------- Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * Update babel deps for subdep vulterability (#599) * Bump vitest for subdep get-func-name vulerability (#601) * Use override to bring postcss up to patched ver (#606) * Feat/386 enable oracle api to send logs to opensearch (#436) * feat: creating and adjusting scripts * feat: creating new config files for fluentbit * feat: adjusting scripts * fix: fixing comment * fix: adjusting property * fix: fixing fluentbit deploy path on the workflows * feat: scape double quotes for file logging issue #386 * feat: update log patterns and logging levels issue #386 * ci: add opensearch oracle-api environment flag issue #386 * feat: add oracle-api config files for fluentbit issue #386 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Craig Yu <[email protected]> * feat: add user id provided by the idp and email * chore: remove comment with real name issue #481 * chore: remove comment with real information issue #481 * ci: add build arg for backend issue #481 * ci: add build arg for backend round 2 issue #481 * ci: add build arg for backend issue #481 * feat: add default aws cognito issuer uri issue #481 * ci: add missing env var to oracle api issue #481 * ci: fix env var for postgres and oracle issue #481 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]>
DerekRoberts
added a commit
that referenced
this pull request
May 13, 2024
DerekRoberts
added a commit
that referenced
this pull request
May 13, 2024
* Feat/480 replace keycloak by fam for authentication on fe (#578) * feat: replace keycloak by fam Issue #480 These changes are the first changes to get FAM working with SPAR since FAM is the preferred authentication library for the ministry applications. * feat: remove context not required anymore Issue #480 This change removes the Context Authentication file created when using keycloak, not needed anymore, because now there's an authentication service created that will handle everything. * feat: fam working locally in the front end Issue #480 This change updates files in the front end in order of getting it working with FAM and AWS Cognito authentication. Note that this is a working in progress, which means you may find some console log. * feat: disable authentication in the back end Issue #480 This commit update the back end service to remove all authentication and authorization handling for now, since it will be tackled in a future task issue #481. * fix: wrong docker compose yml identation Issue #480 Simply fix the docker-compose.yml file identation. * feat: disable backend security Issue #480 This change disables the security in the back end REST api and allows actuator endpoints to be accessed. * feat: add context provider for a better usage Issue #480 This change get back all context-related files and components to work closely with what we have for keycloak. * feat: create header between FE and BE Issue #480 A simple header was created to enable users to keep using SPAR client with usual activities until we get #481 finished. * test: fix user authentication helper test Issue #480 Fix tests and javadoc broken checkstyle. * test: split context and provider and fix land test Issue #480 Having context and provider splited into two files make it possible to mock values for testing components. * tests: get all tests passing related to auth Issue #480 Now all tests are working and passing. There's still issues related to favourite activities mock and morage js, though. * feat: remove old use auth hook created Issue #480 Remove use auth and replace it by use context with the authentication context name. * feat: add runtime hint for http servlet request Issue #480 Runtime Hints required for graal vm and cloud native. * chore: add javadoc comments Issue #480 * feat: add runtime hints for cloud native Issue #480 * ci: add new env vars to workflows Issue #480 Yep, just that. * feat: prevent access from missing env var Issue #480 * chore: fix warnings and issues raised by vscode Issue #480 * test: add user authentication test for temporary case * VITE_AWS_DOMAIN * VITE_AWS_DOMAIN try 2 * VITE_AWS_DOMAIN try 3 * chore: remove unused code issue #480 * chore: remove all keycloak related references issue #480 * chore: improve vite init global issue #480 * ci: crated docker compose test file and fix dockerfiles issue #480 * feat: improve login redirects for a better ux issue #480 * feat: add try catch on signout issue #480 * feat: remove await from logout * Test heap size builds * Dial down max-old-space-size * feat: add refresh token function issue #480 * feat: get cypress working with FAM issue #480 * chore: fix authentication issues on oracle-api * feat: improve authentication for business bce-id issue #480 * test: get cypress working with fam issue #480 * test: update cypress test workflow to use oracle dev issue #480 * chore: remove uneeded variable from landing page * fix: refactor routing, fix cypress, housekeeping * fix: remove code smells * fix: change sonar exclusion * feat: sign out feature redirect issue issue #480 * test: fix cypress test user name issue #480 * fix: remove try catch blocks * fix: remove role req --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * feat: replace jwt decode and roles to use fam authorization on be (#585) * chore: improve docs and oracle development (#534) * docs: update readme file with latest notes No issue-related. This change updates the repo readme file which contains information of the existing services and applications. * docs: improve documentation in general No issue * feat: allows oracle api to run and develop from docker No issue * test: vegetation code test improvements * chore: fix checkstyle * ci: add env var for oracle ca certs file * feat: remove jssecacerts file and add script for fetching it --------- Co-authored-by: Derek Roberts <[email protected]> * fix: wrong keycloak realm url for prod (#580) * fix: wrong keycloak realm url for prod issue #553 * ci: disable triggers temporarily * fix: spring pagination is zero-based (#584) * fix: spring pagination is zero-based issue #582 * fix: get triggers back wrongly merged in a previous pr * fix: default page index value for swagger when finding seedlots by user issue #582 * feat: backend and oracle decode fam cognito token issue #481 * [Snyk] Security upgrade axios from 1.4.0 to 1.6.0 (#592) * fix: frontend/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6032459 * package-lock.json --------- Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * Update babel deps for subdep vulterability (#599) * Bump vitest for subdep get-func-name vulerability (#601) * Use override to bring postcss up to patched ver (#606) * Feat/386 enable oracle api to send logs to opensearch (#436) * feat: creating and adjusting scripts * feat: creating new config files for fluentbit * feat: adjusting scripts * fix: fixing comment * fix: adjusting property * fix: fixing fluentbit deploy path on the workflows * feat: scape double quotes for file logging issue #386 * feat: update log patterns and logging levels issue #386 * ci: add opensearch oracle-api environment flag issue #386 * feat: add oracle-api config files for fluentbit issue #386 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Craig Yu <[email protected]> * feat: add user id provided by the idp and email * chore: remove comment with real name issue #481 * chore: remove comment with real information issue #481 * ci: add build arg for backend issue #481 * ci: add build arg for backend round 2 issue #481 * ci: add build arg for backend issue #481 * feat: add default aws cognito issuer uri issue #481 * ci: add missing env var to oracle api issue #481 * ci: fix env var for postgres and oracle issue #481 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]>
DerekRoberts
added a commit
that referenced
this pull request
May 14, 2024
DerekRoberts
added a commit
that referenced
this pull request
May 14, 2024
* Feat/480 replace keycloak by fam for authentication on fe (#578) * feat: replace keycloak by fam Issue #480 These changes are the first changes to get FAM working with SPAR since FAM is the preferred authentication library for the ministry applications. * feat: remove context not required anymore Issue #480 This change removes the Context Authentication file created when using keycloak, not needed anymore, because now there's an authentication service created that will handle everything. * feat: fam working locally in the front end Issue #480 This change updates files in the front end in order of getting it working with FAM and AWS Cognito authentication. Note that this is a working in progress, which means you may find some console log. * feat: disable authentication in the back end Issue #480 This commit update the back end service to remove all authentication and authorization handling for now, since it will be tackled in a future task issue #481. * fix: wrong docker compose yml identation Issue #480 Simply fix the docker-compose.yml file identation. * feat: disable backend security Issue #480 This change disables the security in the back end REST api and allows actuator endpoints to be accessed. * feat: add context provider for a better usage Issue #480 This change get back all context-related files and components to work closely with what we have for keycloak. * feat: create header between FE and BE Issue #480 A simple header was created to enable users to keep using SPAR client with usual activities until we get #481 finished. * test: fix user authentication helper test Issue #480 Fix tests and javadoc broken checkstyle. * test: split context and provider and fix land test Issue #480 Having context and provider splited into two files make it possible to mock values for testing components. * tests: get all tests passing related to auth Issue #480 Now all tests are working and passing. There's still issues related to favourite activities mock and morage js, though. * feat: remove old use auth hook created Issue #480 Remove use auth and replace it by use context with the authentication context name. * feat: add runtime hint for http servlet request Issue #480 Runtime Hints required for graal vm and cloud native. * chore: add javadoc comments Issue #480 * feat: add runtime hints for cloud native Issue #480 * ci: add new env vars to workflows Issue #480 Yep, just that. * feat: prevent access from missing env var Issue #480 * chore: fix warnings and issues raised by vscode Issue #480 * test: add user authentication test for temporary case * VITE_AWS_DOMAIN * VITE_AWS_DOMAIN try 2 * VITE_AWS_DOMAIN try 3 * chore: remove unused code issue #480 * chore: remove all keycloak related references issue #480 * chore: improve vite init global issue #480 * ci: crated docker compose test file and fix dockerfiles issue #480 * feat: improve login redirects for a better ux issue #480 * feat: add try catch on signout issue #480 * feat: remove await from logout * Test heap size builds * Dial down max-old-space-size * feat: add refresh token function issue #480 * feat: get cypress working with FAM issue #480 * chore: fix authentication issues on oracle-api * feat: improve authentication for business bce-id issue #480 * test: get cypress working with fam issue #480 * test: update cypress test workflow to use oracle dev issue #480 * chore: remove uneeded variable from landing page * fix: refactor routing, fix cypress, housekeeping * fix: remove code smells * fix: change sonar exclusion * feat: sign out feature redirect issue issue #480 * test: fix cypress test user name issue #480 * fix: remove try catch blocks * fix: remove role req --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * feat: replace jwt decode and roles to use fam authorization on be (#585) * chore: improve docs and oracle development (#534) * docs: update readme file with latest notes No issue-related. This change updates the repo readme file which contains information of the existing services and applications. * docs: improve documentation in general No issue * feat: allows oracle api to run and develop from docker No issue * test: vegetation code test improvements * chore: fix checkstyle * ci: add env var for oracle ca certs file * feat: remove jssecacerts file and add script for fetching it --------- Co-authored-by: Derek Roberts <[email protected]> * fix: wrong keycloak realm url for prod (#580) * fix: wrong keycloak realm url for prod issue #553 * ci: disable triggers temporarily * fix: spring pagination is zero-based (#584) * fix: spring pagination is zero-based issue #582 * fix: get triggers back wrongly merged in a previous pr * fix: default page index value for swagger when finding seedlots by user issue #582 * feat: backend and oracle decode fam cognito token issue #481 * [Snyk] Security upgrade axios from 1.4.0 to 1.6.0 (#592) * fix: frontend/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6032459 * package-lock.json --------- Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * Update babel deps for subdep vulterability (#599) * Bump vitest for subdep get-func-name vulerability (#601) * Use override to bring postcss up to patched ver (#606) * Feat/386 enable oracle api to send logs to opensearch (#436) * feat: creating and adjusting scripts * feat: creating new config files for fluentbit * feat: adjusting scripts * fix: fixing comment * fix: adjusting property * fix: fixing fluentbit deploy path on the workflows * feat: scape double quotes for file logging issue #386 * feat: update log patterns and logging levels issue #386 * ci: add opensearch oracle-api environment flag issue #386 * feat: add oracle-api config files for fluentbit issue #386 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Craig Yu <[email protected]> * feat: add user id provided by the idp and email * chore: remove comment with real name issue #481 * chore: remove comment with real information issue #481 * ci: add build arg for backend issue #481 * ci: add build arg for backend round 2 issue #481 * ci: add build arg for backend issue #481 * feat: add default aws cognito issuer uri issue #481 * ci: add missing env var to oracle api issue #481 * ci: fix env var for postgres and oracle issue #481 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]>
DerekRoberts
added a commit
that referenced
this pull request
May 14, 2024
DerekRoberts
added a commit
that referenced
this pull request
May 14, 2024
* Feat/480 replace keycloak by fam for authentication on fe (#578) * feat: replace keycloak by fam Issue #480 These changes are the first changes to get FAM working with SPAR since FAM is the preferred authentication library for the ministry applications. * feat: remove context not required anymore Issue #480 This change removes the Context Authentication file created when using keycloak, not needed anymore, because now there's an authentication service created that will handle everything. * feat: fam working locally in the front end Issue #480 This change updates files in the front end in order of getting it working with FAM and AWS Cognito authentication. Note that this is a working in progress, which means you may find some console log. * feat: disable authentication in the back end Issue #480 This commit update the back end service to remove all authentication and authorization handling for now, since it will be tackled in a future task issue #481. * fix: wrong docker compose yml identation Issue #480 Simply fix the docker-compose.yml file identation. * feat: disable backend security Issue #480 This change disables the security in the back end REST api and allows actuator endpoints to be accessed. * feat: add context provider for a better usage Issue #480 This change get back all context-related files and components to work closely with what we have for keycloak. * feat: create header between FE and BE Issue #480 A simple header was created to enable users to keep using SPAR client with usual activities until we get #481 finished. * test: fix user authentication helper test Issue #480 Fix tests and javadoc broken checkstyle. * test: split context and provider and fix land test Issue #480 Having context and provider splited into two files make it possible to mock values for testing components. * tests: get all tests passing related to auth Issue #480 Now all tests are working and passing. There's still issues related to favourite activities mock and morage js, though. * feat: remove old use auth hook created Issue #480 Remove use auth and replace it by use context with the authentication context name. * feat: add runtime hint for http servlet request Issue #480 Runtime Hints required for graal vm and cloud native. * chore: add javadoc comments Issue #480 * feat: add runtime hints for cloud native Issue #480 * ci: add new env vars to workflows Issue #480 Yep, just that. * feat: prevent access from missing env var Issue #480 * chore: fix warnings and issues raised by vscode Issue #480 * test: add user authentication test for temporary case * VITE_AWS_DOMAIN * VITE_AWS_DOMAIN try 2 * VITE_AWS_DOMAIN try 3 * chore: remove unused code issue #480 * chore: remove all keycloak related references issue #480 * chore: improve vite init global issue #480 * ci: crated docker compose test file and fix dockerfiles issue #480 * feat: improve login redirects for a better ux issue #480 * feat: add try catch on signout issue #480 * feat: remove await from logout * Test heap size builds * Dial down max-old-space-size * feat: add refresh token function issue #480 * feat: get cypress working with FAM issue #480 * chore: fix authentication issues on oracle-api * feat: improve authentication for business bce-id issue #480 * test: get cypress working with fam issue #480 * test: update cypress test workflow to use oracle dev issue #480 * chore: remove uneeded variable from landing page * fix: refactor routing, fix cypress, housekeeping * fix: remove code smells * fix: change sonar exclusion * feat: sign out feature redirect issue issue #480 * test: fix cypress test user name issue #480 * fix: remove try catch blocks * fix: remove role req --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * feat: replace jwt decode and roles to use fam authorization on be (#585) * chore: improve docs and oracle development (#534) * docs: update readme file with latest notes No issue-related. This change updates the repo readme file which contains information of the existing services and applications. * docs: improve documentation in general No issue * feat: allows oracle api to run and develop from docker No issue * test: vegetation code test improvements * chore: fix checkstyle * ci: add env var for oracle ca certs file * feat: remove jssecacerts file and add script for fetching it --------- Co-authored-by: Derek Roberts <[email protected]> * fix: wrong keycloak realm url for prod (#580) * fix: wrong keycloak realm url for prod issue #553 * ci: disable triggers temporarily * fix: spring pagination is zero-based (#584) * fix: spring pagination is zero-based issue #582 * fix: get triggers back wrongly merged in a previous pr * fix: default page index value for swagger when finding seedlots by user issue #582 * feat: backend and oracle decode fam cognito token issue #481 * [Snyk] Security upgrade axios from 1.4.0 to 1.6.0 (#592) * fix: frontend/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6032459 * package-lock.json --------- Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * Update babel deps for subdep vulterability (#599) * Bump vitest for subdep get-func-name vulerability (#601) * Use override to bring postcss up to patched ver (#606) * Feat/386 enable oracle api to send logs to opensearch (#436) * feat: creating and adjusting scripts * feat: creating new config files for fluentbit * feat: adjusting scripts * fix: fixing comment * fix: adjusting property * fix: fixing fluentbit deploy path on the workflows * feat: scape double quotes for file logging issue #386 * feat: update log patterns and logging levels issue #386 * ci: add opensearch oracle-api environment flag issue #386 * feat: add oracle-api config files for fluentbit issue #386 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Craig Yu <[email protected]> * feat: add user id provided by the idp and email * chore: remove comment with real name issue #481 * chore: remove comment with real information issue #481 * ci: add build arg for backend issue #481 * ci: add build arg for backend round 2 issue #481 * ci: add build arg for backend issue #481 * feat: add default aws cognito issuer uri issue #481 * ci: add missing env var to oracle api issue #481 * ci: fix env var for postgres and oracle issue #481 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]>
DerekRoberts
added a commit
that referenced
this pull request
May 14, 2024
DerekRoberts
added a commit
that referenced
this pull request
May 14, 2024
* Feat/480 replace keycloak by fam for authentication on fe (#578) * feat: replace keycloak by fam Issue #480 These changes are the first changes to get FAM working with SPAR since FAM is the preferred authentication library for the ministry applications. * feat: remove context not required anymore Issue #480 This change removes the Context Authentication file created when using keycloak, not needed anymore, because now there's an authentication service created that will handle everything. * feat: fam working locally in the front end Issue #480 This change updates files in the front end in order of getting it working with FAM and AWS Cognito authentication. Note that this is a working in progress, which means you may find some console log. * feat: disable authentication in the back end Issue #480 This commit update the back end service to remove all authentication and authorization handling for now, since it will be tackled in a future task issue #481. * fix: wrong docker compose yml identation Issue #480 Simply fix the docker-compose.yml file identation. * feat: disable backend security Issue #480 This change disables the security in the back end REST api and allows actuator endpoints to be accessed. * feat: add context provider for a better usage Issue #480 This change get back all context-related files and components to work closely with what we have for keycloak. * feat: create header between FE and BE Issue #480 A simple header was created to enable users to keep using SPAR client with usual activities until we get #481 finished. * test: fix user authentication helper test Issue #480 Fix tests and javadoc broken checkstyle. * test: split context and provider and fix land test Issue #480 Having context and provider splited into two files make it possible to mock values for testing components. * tests: get all tests passing related to auth Issue #480 Now all tests are working and passing. There's still issues related to favourite activities mock and morage js, though. * feat: remove old use auth hook created Issue #480 Remove use auth and replace it by use context with the authentication context name. * feat: add runtime hint for http servlet request Issue #480 Runtime Hints required for graal vm and cloud native. * chore: add javadoc comments Issue #480 * feat: add runtime hints for cloud native Issue #480 * ci: add new env vars to workflows Issue #480 Yep, just that. * feat: prevent access from missing env var Issue #480 * chore: fix warnings and issues raised by vscode Issue #480 * test: add user authentication test for temporary case * VITE_AWS_DOMAIN * VITE_AWS_DOMAIN try 2 * VITE_AWS_DOMAIN try 3 * chore: remove unused code issue #480 * chore: remove all keycloak related references issue #480 * chore: improve vite init global issue #480 * ci: crated docker compose test file and fix dockerfiles issue #480 * feat: improve login redirects for a better ux issue #480 * feat: add try catch on signout issue #480 * feat: remove await from logout * Test heap size builds * Dial down max-old-space-size * feat: add refresh token function issue #480 * feat: get cypress working with FAM issue #480 * chore: fix authentication issues on oracle-api * feat: improve authentication for business bce-id issue #480 * test: get cypress working with fam issue #480 * test: update cypress test workflow to use oracle dev issue #480 * chore: remove uneeded variable from landing page * fix: refactor routing, fix cypress, housekeeping * fix: remove code smells * fix: change sonar exclusion * feat: sign out feature redirect issue issue #480 * test: fix cypress test user name issue #480 * fix: remove try catch blocks * fix: remove role req --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * feat: replace jwt decode and roles to use fam authorization on be (#585) * chore: improve docs and oracle development (#534) * docs: update readme file with latest notes No issue-related. This change updates the repo readme file which contains information of the existing services and applications. * docs: improve documentation in general No issue * feat: allows oracle api to run and develop from docker No issue * test: vegetation code test improvements * chore: fix checkstyle * ci: add env var for oracle ca certs file * feat: remove jssecacerts file and add script for fetching it --------- Co-authored-by: Derek Roberts <[email protected]> * fix: wrong keycloak realm url for prod (#580) * fix: wrong keycloak realm url for prod issue #553 * ci: disable triggers temporarily * fix: spring pagination is zero-based (#584) * fix: spring pagination is zero-based issue #582 * fix: get triggers back wrongly merged in a previous pr * fix: default page index value for swagger when finding seedlots by user issue #582 * feat: backend and oracle decode fam cognito token issue #481 * [Snyk] Security upgrade axios from 1.4.0 to 1.6.0 (#592) * fix: frontend/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6032459 * package-lock.json --------- Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Derek Roberts <[email protected]> * Update babel deps for subdep vulterability (#599) * Bump vitest for subdep get-func-name vulerability (#601) * Use override to bring postcss up to patched ver (#606) * Feat/386 enable oracle api to send logs to opensearch (#436) * feat: creating and adjusting scripts * feat: creating new config files for fluentbit * feat: adjusting scripts * fix: fixing comment * fix: adjusting property * fix: fixing fluentbit deploy path on the workflows * feat: scape double quotes for file logging issue #386 * feat: update log patterns and logging levels issue #386 * ci: add opensearch oracle-api environment flag issue #386 * feat: add oracle-api config files for fluentbit issue #386 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Craig Yu <[email protected]> * feat: add user id provided by the idp and email * chore: remove comment with real name issue #481 * chore: remove comment with real information issue #481 * ci: add build arg for backend issue #481 * ci: add build arg for backend round 2 issue #481 * ci: add build arg for backend issue #481 * feat: add default aws cognito issuer uri issue #481 * ci: add missing env var to oracle api issue #481 * ci: fix env var for postgres and oracle issue #481 --------- Co-authored-by: Ricardo Campos <[email protected]> Co-authored-by: Derek Roberts <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
https://github.com/bcgov/nr-spar/security/dependabot/48
Thanks for the PR!
Any successful deployments (not always required) will be available below.
Backend
Frontend
Oracle-API
Once merged, code will be promoted and handed off to following workflow run.
Main Merge Workflow