Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

sig#751 - Add BPDM Orchestrator Roles #1020

Open
2 tasks
nicoprow opened this issue Sep 20, 2024 · 6 comments
Open
2 tasks

sig#751 - Add BPDM Orchestrator Roles #1020

nicoprow opened this issue Sep 20, 2024 · 6 comments
Assignees
@typecastcloud
Labels
enhancement New feature or request

Comments

@nicoprow
Copy link

nicoprow commented Sep 20, 2024
edited
Loading

Description

As a Cx Operator I want to be able to create technical users with BPDM Orchestrator roles:

  • BPDM Orchestrator Admin
  • BPDM Orchestrator Task Creator
  • BPDM Orchestrator Processor Clean
  • BPDM Orchestrator Processor CleanAndSync
  • BPDM Orchestrator Processor PoolSync

German Translations:

• BPDM Orchestrator Admin: Vollzugriff auf die Golden Record Tasks
• BPDM Orchestrator Task Creator: Erstelle Golden Record Tasks, lese das Task-Ergebnis und den Status aus
• PDM Orchestrator Processor Clean: Reserviere und bearbeitete Golden Record Tasks im Schritt 'Clean'
• BPDM Orchestrator Processor CleanAndSync: Reserviere und bearbeitete Golden Record Tasks im Schritt 'Clean And Sync'
• BPDM Orchestrator Processor PoolSync: eserviere und bearbeitete Golden Record Tasks im Schritt 'Pool'

Relevant references:

Acceptance Criteria

  • Roles appear in technical user creation for the CX Operator
  • Roles do not appear in technical user creation for any other Portal user role

Additional Information
@nicoprow nicoprow added the enhancement New feature or request label Sep 20, 2024
@nicoprow nicoprow mentioned this issue Sep 20, 2024
Merged
6 tasks
@evegufy
Copy link
Contributor

evegufy commented Sep 20, 2024

sig issue eclipse-tractusx/sig-release#751

@evegufy evegufy changed the title Add BPDM Orchestrator Roles sig#751 - Add BPDM Orchestrator Roles Sep 20, 2024
This was referenced Sep 20, 2024
Open
Closed
@evegufy
Copy link
Contributor

evegufy commented Sep 23, 2024

Hi @typecastcloud great that you did implement #1002!
In general this change is quite similar, would it be possible that you take it over?

@typecastcloud
Copy link
Contributor

Hi @typecastcloud great that you did implement #1002! In general this change is quite similar, would it be possible that you take it over?

Okay I'll pick it up.

@evegufy
Copy link
Contributor

evegufy commented Sep 26, 2024

Hi @typecastcloud I noticed the "new" service accounts from BPDM also need to be added to the Portal seeding (service-account table, to operator company) :

  • sa-cl7-cx-1
  • sa-cl7-cx-7
  • sa-cl25-cx-1
  • sa-cl25-cx-2
  • sa-cl25-cx-3

Would make sense to combine it with this issue.

@nicoprow
Copy link
Author

Added german translations

@typecastcloud typecastcloud self-assigned this Sep 27, 2024
typecastcloud added a commit to Cofinity-X/entry-portal-backend that referenced this issue Sep 27, 2024
@typecastcloud
feat(seeder): add new BPDM service accounts, identities, user role as…
fcfeb83 
…signments, and descriptions

Refs: eclipse-tractusx#1020
@typecastcloud typecastcloud mentioned this issue Sep 30, 2024
Merged
8 tasks
@typecastcloud
Copy link
Contributor

typecastcloud commented Sep 30, 2024
edited
Loading

Test Cases

Hi @MaximilianHauer, is a format like this okay?

Test Case 1: Create Technical User - BPDM Orchestrator Admin

Description: Verify that technical user BPDM Orchestrator Admin with correct roles gets created by CX Operator
Steps:

  • Go to technical user management
  • Create "BPDM Orchestrator Admin"
  • Create token
  • Verify roles

Expected Result:

"Cl25-CX-BPDM-Orchestrator": [
  "create_result_poolSync",
  "read_task",
  "create_result_cleanAndSync",
  "create_task",
  "create_reservation_clean",
  "create_reservation_poolSync",
  "create_result_clean",
  "create_reservation_cleanAndSync"
]

or compare roles with eclipse-tractusx/portal-iam#155

Test Case 2: Limited CX Operator Company Access

Description: Verify that only CX Operator can create the new BPDM roles
Steps:

  • Login to "non"-CX-Operator company
  • Go to technical user management
  • Check if any of the new roles or service accounts are are visible

Expected Result:
No BPDM Orchestrator role or service account is available to create or update

Test Case 3: Change secret via Portal

Description: Verify that secret for sa-cl25-cx-3 can be reset
Steps:

  • Go to technical user management
  • Search for sa-cl25-cx-3
  • Open details
  • Create token to check if service account works
  • Click on Reset Credentials
  • Create token to check if service account still works

Expected Result: Secret is changed and works after reset

typecastcloud added a commit to Cofinity-X/entry-portal-backend that referenced this issue Oct 2, 2024
@typecastcloud
feat(seeder): add new BPDM service accounts, identities, user role as…
0ff2628 
…signments, and descriptions

Refs: eclipse-tractusx#1020
ntruchsess pushed a commit that referenced this issue Oct 7, 2024
@typecastcloud
feat(bpdm): add bpdm orchestrator roles and svc acc (#1048)
0fbcb76 
* feat(seeder): add new BPDM service accounts, identities, user role assignments, and descriptions
Refs: #1020
* Add version updates
* Add changelog
* null user_entity_id variable
* Update descriptions
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@typecastcloud typecastcloud

Labels
enhancement New feature or request
Projects
Portal
Status: NEW USER REQUEST
Milestone
No milestone
Development

No branches or pull requests
3 participants
@evegufy @nicoprow @typecastcloud