Add oidc implementation with authentication and authorization #2
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
francbartoli
added a commit
that referenced
this pull request
Apr 30, 2022
francbartoli
added a commit
that referenced
this pull request
Feb 16, 2023
* Add cookiecuttered application Add cookiecuttered application Add cookiecuttered application Add cookiecuttered application * Add empty fastapi application Add empty fastapi application Add empty fastapi application * Add pygeoapi with static configuration * Add basic authn and authz implementation via keycloak and opa (#2) * Fix some noxfile sessions (#3) * Fix precommit failures * Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix some noxfile sessions Fix some noxfile sessions (#3) Fix some noxfile sessions (#3) * Replace click with typer * Fix more noxfile sessions Fix tests for python 3.10 Fix xdoctest command Fix docs session in noxfile Fix docs Fix mkdocs commands in noxfile Fix mkdocs commands in noxfile * Add base architecture and some docs for development * Add cookiecuttered application Add cookiecuttered application Add cookiecuttered application Add cookiecuttered application * Add empty fastapi application Add empty fastapi application Add empty fastapi application * Add pygeoapi with static configuration * Add basic authn and authz implementation via keycloak and opa (#2) * Fix some noxfile sessions (#3) * Fix precommit failures * Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix some noxfile sessions Fix some noxfile sessions (#3) Fix some noxfile sessions (#3) * Replace click with typer * Fix more noxfile sessions Fix tests for python 3.10 Fix xdoctest command Fix docs session in noxfile Fix docs Fix mkdocs commands in noxfile Fix mkdocs commands in noxfile * Add base architecture and some docs for development * Update pygeoapi dependency * Update readme with complete rego example * Fix pre-commit * Update README.md (#6) * Update README.md Add images to serve as guide when setting up Keycloak * Update readme with complete rego example * Add new images Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Update README with images stored in docs/images folder Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Fix pre-commit * Update README.md Add images to serve as guide when setting up Keycloak * Add new images Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Update README with images stored in docs/images folder Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Fix pre-commit Co-authored-by: Francesco Bartoli <francesco.bartoli@geobeyond.it> * Rename project * Fix failing tests. (#7) * 1. Update `main.py` file to include a custom FastAPI class. In this class, I have added a `logger` attribute to fix the error from mypy. 2. Updated the `noxfile.py` to include the `--namespace-packages` tag to ensure mypy pursues the library path instead of a shallow search returning a module has no attribute error. 3. Fixed the wrong class import in the service_result.py file. 4. Created the mypy configuration file to ignore missing imports. * Format conf fie * In this commit, I made the following changes: 1. Updated the `noxfile.py` file to clean the cache before running the `pre-commit test`. The cache is responsible for failed tests. 2. Added docstrings to `ModifiedFastAPI` class in `app/main.py` 3. Format imports in `logging.py`, `auth.py` and `test_cli.py` by running `nox` locally. * Update main.py * Proper renaming Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Update main.py * Update dependency. * Set source diagram format * Update dependencies and make OPA optional (#9) * Update dependencies * Make open policy agent protection optional * Fix gdal installation * Fix precommit and bandit dev dependencies * Update CI python packages * Opt in apikey (#10) * Update dependencies * Make open policy agent protection optional * Fix gdal installation * Fix precommit and bandit dev dependencies * Update CI python packages * Add optional api-key protection to pygeoapi * Fix precommit Fix precommit Fix precommit Fix precommit * Fix safety with exclusions Fix safety with exclusions Fix safety with exclusions Fix safety with exclusions * Fix mypy See pandas-dev/pandas-stubs#296 Fix mypy by pinning 3.10.6 See pandas-dev/pandas-stubs#296 Fix mypy Fix mypy * Update dependencies * Make open policy agent protection optional * Fix precommit and bandit dev dependencies * Add optional api-key protection to pygeoapi * Fix precommit Fix precommit Fix precommit Fix precommit * Fix safety with exclusions Fix safety with exclusions Fix safety with exclusions Fix safety with exclusions * Fix mypy See pandas-dev/pandas-stubs#296 Fix mypy by pinning 3.10.6 See pandas-dev/pandas-stubs#296 Fix mypy Fix mypy * Update pygeoapi openapi document (#11) * Override pygeoapi configuration files * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix safety warning and bump fastapi-key-auth version * Fix precommit failure Fix precommit failure Fix precommit failure * Fix CI/CD (#12) * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix precommit failure Fix precommit failure Fix precommit failure * Fix mypy --------- Co-authored-by: Abdulazeez Abdulazeez Adeshina <31009679+Youngestdev@users.noreply.github.com>
francbartoli
added a commit
that referenced
this pull request
Jun 12, 2023
* Add cookiecuttered application Add cookiecuttered application Add cookiecuttered application Add cookiecuttered application * Add empty fastapi application Add empty fastapi application Add empty fastapi application * Add pygeoapi with static configuration * Add basic authn and authz implementation via keycloak and opa (#2) * Fix some noxfile sessions (#3) * Fix precommit failures * Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix some noxfile sessions Fix some noxfile sessions (#3) Fix some noxfile sessions (#3) * Replace click with typer * Fix more noxfile sessions Fix tests for python 3.10 Fix xdoctest command Fix docs session in noxfile Fix docs Fix mkdocs commands in noxfile Fix mkdocs commands in noxfile * Add base architecture and some docs for development * Add cookiecuttered application Add cookiecuttered application Add cookiecuttered application Add cookiecuttered application * Add empty fastapi application Add empty fastapi application Add empty fastapi application * Add pygeoapi with static configuration * Add basic authn and authz implementation via keycloak and opa (#2) * Fix some noxfile sessions (#3) * Fix precommit failures * Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix noxfile Fix some noxfile sessions Fix some noxfile sessions (#3) Fix some noxfile sessions (#3) * Replace click with typer * Fix more noxfile sessions Fix tests for python 3.10 Fix xdoctest command Fix docs session in noxfile Fix docs Fix mkdocs commands in noxfile Fix mkdocs commands in noxfile * Add base architecture and some docs for development * Update pygeoapi dependency * Update readme with complete rego example * Fix pre-commit * Update README.md (#6) * Update README.md Add images to serve as guide when setting up Keycloak * Update readme with complete rego example * Add new images Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Update README with images stored in docs/images folder Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Fix pre-commit * Update README.md Add images to serve as guide when setting up Keycloak * Add new images Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Update README with images stored in docs/images folder Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Fix pre-commit Co-authored-by: Francesco Bartoli <francesco.bartoli@geobeyond.it> * Rename project * Fix failing tests. (#7) * 1. Update `main.py` file to include a custom FastAPI class. In this class, I have added a `logger` attribute to fix the error from mypy. 2. Updated the `noxfile.py` to include the `--namespace-packages` tag to ensure mypy pursues the library path instead of a shallow search returning a module has no attribute error. 3. Fixed the wrong class import in the service_result.py file. 4. Created the mypy configuration file to ignore missing imports. * Format conf fie * In this commit, I made the following changes: 1. Updated the `noxfile.py` file to clean the cache before running the `pre-commit test`. The cache is responsible for failed tests. 2. Added docstrings to `ModifiedFastAPI` class in `app/main.py` 3. Format imports in `logging.py`, `auth.py` and `test_cli.py` by running `nox` locally. * Update main.py * Proper renaming Signed-off-by: Abdulazeez Abdulazeez Adeshina <youngestdev@gmail.com> * Update main.py * Update dependency. * Set source diagram format * Update dependencies and make OPA optional (#9) * Update dependencies * Make open policy agent protection optional * Fix gdal installation * Fix precommit and bandit dev dependencies * Update CI python packages * Opt in apikey (#10) * Update dependencies * Make open policy agent protection optional * Fix gdal installation * Fix precommit and bandit dev dependencies * Update CI python packages * Add optional api-key protection to pygeoapi * Fix precommit Fix precommit Fix precommit Fix precommit * Fix safety with exclusions Fix safety with exclusions Fix safety with exclusions Fix safety with exclusions * Fix mypy See pandas-dev/pandas-stubs#296 Fix mypy by pinning 3.10.6 See pandas-dev/pandas-stubs#296 Fix mypy Fix mypy * Update dependencies * Make open policy agent protection optional * Fix precommit and bandit dev dependencies * Add optional api-key protection to pygeoapi * Fix precommit Fix precommit Fix precommit Fix precommit * Fix safety with exclusions Fix safety with exclusions Fix safety with exclusions Fix safety with exclusions * Fix mypy See pandas-dev/pandas-stubs#296 Fix mypy by pinning 3.10.6 See pandas-dev/pandas-stubs#296 Fix mypy Fix mypy * Update pygeoapi openapi document (#11) * Override pygeoapi configuration files * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix safety warning and bump fastapi-key-auth version * Fix precommit failure Fix precommit failure Fix precommit failure * Fix CI/CD (#12) * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix precommit failure Fix precommit failure Fix precommit failure * Fix mypy * Fix docker-compose for M1 machines (#26) * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix precommit failure Fix precommit failure Fix precommit failure * Fix mypy * Update and fix docker-compose * Bump pypa/gh-action-pypi-publish from 1.4.2 to 1.6.4 (#14) Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.4.2 to 1.6.4. - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](pypa/gh-action-pypi-publish@v1.4.2...v1.6.4) --- updated-dependencies: - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/download-artifact from 2.0.10 to 3.0.2 (#15) Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2.0.10 to 3.0.2. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v2.0.10...v3.0.2) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/setup-python from 2.3.0 to 4.5.0 (#16) Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2.3.0 to 4.5.0. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@v2.3.0...v4.5.0) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/checkout from 2.4.0 to 3.3.0 (#17) Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3.3.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v2.4.0...v3.3.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump crazy-max/ghaction-github-labeler from 3.1.1 to 4.1.0 (#18) Bumps [crazy-max/ghaction-github-labeler](https://github.com/crazy-max/ghaction-github-labeler) from 3.1.1 to 4.1.0. - [Release notes](https://github.com/crazy-max/ghaction-github-labeler/releases) - [Changelog](https://github.com/crazy-max/ghaction-github-labeler/blob/v4.1.0/CHANGELOG.md) - [Commits](crazy-max/ghaction-github-labeler@v3.1.1...v4.1.0) --- updated-dependencies: - dependency-name: crazy-max/ghaction-github-labeler dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump pyupgrade from 2.38.2 to 2.38.4 (#19) Bumps [pyupgrade](https://github.com/asottile/pyupgrade) from 2.38.2 to 2.38.4. - [Release notes](https://github.com/asottile/pyupgrade/releases) - [Commits](asottile/pyupgrade@v2.38.2...v2.38.4) --- updated-dependencies: - dependency-name: pyupgrade dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump pip from 23.0 to 23.0.1 in /.github/workflows (#24) Bumps [pip](https://github.com/pypa/pip) from 23.0 to 23.0.1. - [Release notes](https://github.com/pypa/pip/releases) - [Changelog](https://github.com/pypa/pip/blob/main/NEWS.rst) - [Commits](pypa/pip@23.0...23.0.1) --- updated-dependencies: - dependency-name: pip dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update configuration (#27) * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix precommit failure Fix precommit failure Fix precommit failure * Fix mypy * Update and fix docker-compose * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix precommit failure Fix precommit failure Fix precommit failure * Fix mypy * Update readme and configuration with latest keycloak Update readme and configuration with latest keycloak * Align realm roles * Adding explanation of client secret * Add roles * Formatting * Typo * Typo * Add example of pygeoapi configuration Add example of pygeoapi configuration --------- Co-authored-by: Antonio Cerciello <antonio.cerciello@gmail.com> * Add a middleware to apply security to the pygeoapi openapi (#36) * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix precommit failure Fix precommit failure Fix precommit failure * Fix mypy * Update and fix docker-compose * Add support for postgres table and custom api key from settings * Fix precommit * Fix generation of openapi document from env variables * Update dependencies with security fixes * Fix precommit failure Fix precommit failure Fix precommit failure * Fix mypy * Update readme and configuration with latest keycloak Update readme and configuration with latest keycloak * Align realm roles * Adding explanation of client secret * Add roles * Formatting * Typo * Typo * Add example of pygeoapi configuration Add example of pygeoapi configuration * Add a security middleware for openapi * Fix mypy Fix mypy --------- Co-authored-by: Antonio Cerciello <antonio.cerciello@gmail.com> * Enhancements to FastGeoAPI with Keycloak and PostgreSQL Integration (#93) * Bump pip from 23.0 to 23.0.1 in /.github/workflows (#28) Bumps [pip](https://github.com/pypa/pip) from 23.0 to 23.0.1. - [Release notes](https://github.com/pypa/pip/releases) - [Changelog](https://github.com/pypa/pip/blob/main/NEWS.rst) - [Commits](pypa/pip@23.0...23.0.1) --- updated-dependencies: - dependency-name: pip dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump pypa/gh-action-pypi-publish from 1.4.2 to 1.6.4 (#29) Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.4.2 to 1.6.4. - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](pypa/gh-action-pypi-publish@v1.4.2...v1.6.4) --- updated-dependencies: - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/setup-python from 2.3.0 to 4.5.0 (#30) Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2.3.0 to 4.5.0. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@v2.3.0...v4.5.0) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump salsify/action-detect-and-tag-new-version from 2.0.1 to 2.0.3 (#31) Bumps [salsify/action-detect-and-tag-new-version](https://github.com/salsify/action-detect-and-tag-new-version) from 2.0.1 to 2.0.3. - [Release notes](https://github.com/salsify/action-detect-and-tag-new-version/releases) - [Commits](salsify/action-detect-and-tag-new-version@v2.0.1...v2.0.3) --- updated-dependencies: - dependency-name: salsify/action-detect-and-tag-new-version dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/upload-artifact from 2.2.4 to 3.1.2 (#32) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2.2.4 to 3.1.2. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v2.2.4...v3.1.2) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/checkout from 2.4.0 to 3.3.0 (#33) Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3.3.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v2.4.0...v3.3.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump virtualenv from 20.19.0 to 20.20.0 in /.github/workflows (#37) Bumps [virtualenv](https://github.com/pypa/virtualenv) from 20.19.0 to 20.20.0. - [Release notes](https://github.com/pypa/virtualenv/releases) - [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst) - [Commits](pypa/virtualenv@20.19.0...20.20.0) --- updated-dependencies: - dependency-name: virtualenv dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump poetry from 1.3.2 to 1.4.0 in /.github/workflows (#38) Bumps [poetry](https://github.com/python-poetry/poetry) from 1.3.2 to 1.4.0. - [Release notes](https://github.com/python-poetry/poetry/releases) - [Changelog](https://github.com/python-poetry/poetry/blob/master/CHANGELOG.md) - [Commits](python-poetry/poetry@1.3.2...1.4.0) --- updated-dependencies: - dependency-name: poetry dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/cache from 2.1.7 to 3.2.6 (#44) Bumps [actions/cache](https://github.com/actions/cache) from 2.1.7 to 3.2.6. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@v2.1.7...v3.2.6) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump codecov/codecov-action from 2.1.0 to 3.1.1 (#43) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.1.0 to 3.1.1. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v2.1.0...v3.1.1) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump release-drafter/release-drafter from 5.15.0 to 5.23.0 (#42) Bumps [release-drafter/release-drafter](https://github.com/release-drafter/release-drafter) from 5.15.0 to 5.23.0. - [Release notes](https://github.com/release-drafter/release-drafter/releases) - [Commits](release-drafter/release-drafter@v5.15.0...v5.23.0) --- updated-dependencies: - dependency-name: release-drafter/release-drafter dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/download-artifact from 2.0.10 to 3.0.2 (#41) Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2.0.10 to 3.0.2. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v2.0.10...v3.0.2) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump crazy-max/ghaction-github-labeler from 3.1.1 to 4.1.0 (#40) Bumps [crazy-max/ghaction-github-labeler](https://github.com/crazy-max/ghaction-github-labeler) from 3.1.1 to 4.1.0. - [Release notes](https://github.com/crazy-max/ghaction-github-labeler/releases) - [Changelog](https://github.com/crazy-max/ghaction-github-labeler/blob/v4.1.0/CHANGELOG.md) - [Commits](crazy-max/ghaction-github-labeler@v3.1.1...v4.1.0) --- updated-dependencies: - dependency-name: crazy-max/ghaction-github-labeler dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump pyupgrade from 2.38.2 to 3.3.1 (#39) Bumps [pyupgrade](https://github.com/asottile/pyupgrade) from 2.38.2 to 3.3.1. - [Release notes](https://github.com/asottile/pyupgrade/releases) - [Commits](asottile/pyupgrade@v2.38.2...v3.3.1) --- updated-dependencies: - dependency-name: pyupgrade dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * keycloak predefined realmjson import at startup with docker compose file * Upgrade keycloak and make it more reliable with PostgreSQL and preconfigured client secret in .env * fix: postman collections to use port 5000 instead of 8000 and make /api instead of /v1 * change location of pygeoapi realm * add the .env file for docker-compose * upgrade to the new openid-configuration url from keycloak * change postman collections to the new keycloak openid-configuration urls * add the health chack and keycloak start instead of start-dev prod ready * Replace client_secret to the predefined one * notes for new keycloak updates * add postgresql part * upgrade packages and pygeoapi to latest * upgrade actions poetry to 1.5.1 * import APP instead of app for new pygeoapi version 0.16.dev0 * reformate with prettier and remove spaces * revert back to poetry 1.4.0 * test * fix pre-commit * try 2 to upgrade versions --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Refinements to FastGeoAPI: Security Fix, OpenAPI-Pydantic Integration, and Code Clean-up (#95) * fix: local variable 'security_scheme' referenced before assignment * add openapi-schema-pydantic * remove duplicates command * remove spaces from docker-compose.yml --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Abdulazeez Abdulazeez Adeshina <31009679+Youngestdev@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Antonio Cerciello <antonio.cerciello@gmail.com> Co-authored-by: Youssef Harby <youssef_harby@yahoo.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This has been implemented via fastapi-opa using keycloak for authentication and Open Policy Agent for authorization. The configured rule for pygeoapi is currently
allow=truefor all authenticated users