Skip to content

2.1.0
Compare
Choose a tag to compare
@andricDu andricDu released this 11 Apr 18:36
2.1.0
6536c6e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Changes from 1.x -> 2.1.0

OAuth2.0

  • Ego is now an OAuth2.0 client for:
    • Google
    • Linkedin
    • Facebook
    • Github
  • New login flow allowing multiple front end logins to be supported
  • Properly working Client Credentials flow for Application level tokens
  • Previous google and facebook SDK logins preserved for backwards compatibility.

JWT

  • Ego JWT Structure has changed
    • User Tokens:
      • role has changed to userType and is no longer a collection.
      • Inclusion of scopes as part of JWT
    • Application Tokens
      • applicationType field added where possible values are ADMIN and CLIENT

Policies

  • New entity that provides ACL like functionality.
    • WRITE, READ, DENY are the permissible values for a permission on a policy
    • Permissions on a policy can be assigned to a group or a user
    • Computed scopes (values of permissions) based on inheritance from user permissions and group permissions

API Tokens

  • Similar to the ICGC Access Tokens in functionality
  • Uses Basic auth of an admin type application to create tokens on behalf of user
  • Scopes (values of permissions on policies) are assignable to a token

Bug Fixes and Improvements

  • Last login correctly recorded
  • Data access and database improvements
  • Misc bug fixes
  • Selenium testing infrastructure added
Assets 3
Loading