AAA Server v3.5.0

New Features

• A new IUDX specific role has been introduced which is responsible for performing any administrative tasks related to the APD (referred to as Data Trustee).
• New APIs
  • New Authorisation server APIs for Create, List, Update and Delete of APD by a Data Trustee
  • New Access Policy Domain (APD) Server APIs to read and verify User Class
  • Enhanced AAA server Policy flows for APD server integration for Create, Verify policy

Updates, bugs, and performance fixes

• Enhanced Validation

Test Reports

• Unit tests available here
• Coverage available here
• Security tests available here
• Integration tests available here

What's Changed

• README and misc. by @ThorodanBrom in #88
• Policy service by @MohammedAman23 in #90
• Bug/Fix- duplicationCheck: createPolicy; createPolicyNotifcation and Others.. by @mdadil-dk in #89
• BugFix by @MohammedAman23 in #91
• Bugfix - make RegistrationService.getUserDetails send JsonObject by @ThorodanBrom in #92
• Make RouterBuilder handle cert endpoint + get keystore path/password … by @ThorodanBrom in #93
• BugFix by @MohammedAman23 in #95
• Update KC AuthN token size limit, update introspect token size, add Authorization header to notification APIs by @ThorodanBrom in #96
• Policy service by @MohammedAman23 in #97
• Adding temporary build-push script, docs to image by @abhi4578 in #94
• Bug/Fix- Integration Test Issues by @mdadil-dk in #98
• Update Postman env, add README by @ThorodanBrom in #99
• Keycloak admin client update by @ThorodanBrom in #100
• Bugfix - change KEYCLOAK_ENDPOINT env variable to include protocol by @ThorodanBrom in #101
• Bug fix - handle connection errors for postgres + fix client auth response by @ThorodanBrom in #102
• Catalogue response URN updated by @MohammedAman23 in #104
• Updated docs by @MohammedAman23 in #106
• Adding contact info, update version to 3.0.0 in openapi docs by @abhi4578 in #105
• Added, updated tests for create, introspect token by @ThorodanBrom in #107
• Bugfix - log at fatal lvl in case the HTTP server fails to start by @ThorodanBrom in #108
• immuDB client bug by @kailash in #109
• Added CLI command to deploy selected services/modules in production by @ThorodanBrom in #103
• Bugfix - Add stashed changes for token tests by @ThorodanBrom in #111
• Adding vertx logger system property to exec by @abhi4578 in #110
• Change config to stop repeated options by @ThorodanBrom in #112
• Patch to log4j2 RCE by @abhi4578 in #114
• Set schema using vertx-pg-client connectOptions properties by @ThorodanBrom in #113
• Bugfix - Add authServerUrl key to catalogueOptions instead of catOptions by @ThorodanBrom in #115
• Update token revoke API by @ThorodanBrom in #116
• Bugfix - remove Schema package from Configuration, Utils classes by @ThorodanBrom in #117
• Bugfix - change rs-admin endpoint .../tokenRevoke to .../revokeToken by @ThorodanBrom in #118
• Upgrade log4j2 to 2.16.0 by @abhi4578 in #119
• Upgrade log4j2 to 2.17.0 by @abhi4578 in #121
• Upgrade log4j2 and bug fix of logging dependencies by @abhi4578 in #122
• Cleaning of POM, make it better understandable by @abhi4578 in #124
• Bugfix - postman and doc changes by @ThorodanBrom in #125
• Remove logging of audit DB credentials by @ThorodanBrom in #126
• Organize URNs into an enum by @ThorodanBrom in #123
• Update PostgreSQL JDBC version by @ThorodanBrom in #131
• Client secret regeneration feature in PUT /user/profile by @ThorodanBrom in #130
• Integration with Jenkins CI pipeline by @karun-singh in #128
• Add integ tests for cli-sec regen, more for notif API + bugfix by @ThorodanBrom in #132
• Updated git badge references by @karun-singh in #133
• Changes to registration APIs for trustee (APD Admin) by @ThorodanBrom in #134
• Bump postgresql from 42.2.25 to 42.3.3 by @dependabot in #136
• Catalogue client refactor by @MohammedAman23 in #135
• Add APD service and implemented createApd by @ThorodanBrom in #137
• Added cleanup of unit-test reports from the workspace after test stage by @karun-singh in #141
• Add update APD implementation by @ThorodanBrom in #139
• Add migration for APD policies table and adding 'APD' to item enum by @ThorodanBrom in #140
• Policy service by @MohammedAman23 in #144
• Jenkins CI updates: Added failure step to integTest post-stage by @karun-singh in #143
• Add delete APD policy functionality to DELETE /policies API by @ThorodanBrom in #145
• Implement call APD service + update token API to handle APD tokens by @ThorodanBrom in #148
• non-root image for aaa-server by @hackcoderr in #147
• implementation for listApd and getApdInfo by @MohammedAman23 in #149
• Updated list policy API to include listing APD-related policies by @ThorodanBrom in #146
• API server update for APD APIs by @ThorodanBrom in #142
• Update verifyPolicy to handle APD policies + added test by @ThorodanBrom in #150
• Adding default apiserver ports by @abhi4578 in #151
• Add configurable timeout to APD web client by @ThorodanBrom in #152
• Bug-fix by @ThorodanBrom in #153
• Remove policy verification from introspect token by @ThorodanBrom in #155
• Create apd policy by @MohammedAman23 in #157
• Bug-fix: check if APD sends JSON object when calling /userclasses by @ThorodanBrom in #158
• Disable ZAP Unix Timestamp disclosure err; add low-lvl threshold by @ThorodanBrom in #159
• BugFix by @MohammedAman23 in #162
• Update integration tests by @ThorodanBrom in #160
• Update postman collection and README by @ThorodanBrom in #161
• Testing web client with test APD server by @ThorodanBrom in #156

New Contributors

• @abhi4578 made their first contribution in #94
• @kailash made their first contribution in #109
• @karun-singh made their first contribution in #128
• @dependabot made their first contribution in #136
• @hackcoderr made their first contribution in #147

Full Changelog: v3.0.0...v3.5.0