https://github.com/altinn/altinn-authorization-tmp
Altinn Authorization
https://github.com/altinn/altinn-authorization-tmp
Last synced: 9 months ago
JSON representation
Altinn Authorization
- Host: GitHub
- URL: https://github.com/altinn/altinn-authorization-tmp
- Owner: Altinn
- License: mit
- Created: 2024-09-09T07:25:44.000Z (almost 2 years ago)
- Default Branch: main
- Last Pushed: 2025-03-10T11:34:22.000Z (over 1 year ago)
- Last Synced: 2025-03-10T11:34:37.086Z (over 1 year ago)
- Language: C#
- Size: 6.32 MB
- Stars: 1
- Watchers: 3
- Forks: 0
- Open Issues: 147
-
Metadata Files:
- Readme: README.md
- License: LICENSE
- Security: SECURITY.md
Awesome Lists containing this project
README
| Project | Quality Gate | Bugs | Code Smells | Coverage | Duplicated Lines (%) |
| --------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| **Access Management** | [](https://sonarcloud.io/summary/new_code?id=Authorization_AccessManagement) | [](https://sonarcloud.io/summary/new_code?id=Authorization_AccessManagement) | [](https://sonarcloud.io/summary/new_code?id=Authorization_AccessManagement) | [](https://sonarcloud.io/summary/new_code?id=Authorization_AccessManagement) | [](https://sonarcloud.io/summary/new_code?id=Authorization_AccessManagement) |
| **Authorization** | [](https://sonarcloud.io/summary/new_code?id=Authorization_Authorization) | [](https://sonarcloud.io/summary/new_code?id=Authorization_Authorization) | [](https://sonarcloud.io/summary/new_code?id=Authorization_Authorization) | [](https://sonarcloud.io/summary/new_code?id=Authorization_Authorization) | [](https://sonarcloud.io/summary/new_code?id=Authorization_Authorization) |
| **Register** | [](https://sonarcloud.io/summary/new_code?id=Authorization_Register) | [](https://sonarcloud.io/summary/new_code?id=Authorization_Register) | [](https://sonarcloud.io/summary/new_code?id=Authorization_Register) | [](https://sonarcloud.io/summary/new_code?id=Authorization_Register) | [](https://sonarcloud.io/summary/new_code?id=Authorization_Register) |
# Authorization
## Local Development Environment
### Prerequisites
Ensure you have the following languages and tools installed before setting up your development environment.
#### Languages
- .NET 9.0 & 8.0
- TypeScript
#### Tools
- [Just](https://github.com/casey/just?tab=readme-ov-file#installation)
- [Docker Desktop Windows](http://docs.docker.com/desktop/setup/install/windows-install/)
- [Docker Engine Linux](https://docs.docker.com/engine/install/)
- [Docker Compose Linux](https://docs.docker.com/compose/install/)
- [Docker Compose Windows](https://podman-desktop.io/docs/compose/setting-up-compose)
- [Azure CLI (az)](https://learn.microsoft.com/en-us/cli/azure/install-azure-cli)
- [kubectl](https://kubernetes.io/docs/tasks/tools/)
- [kubelogin](https://azure.github.io/kubelogin/install.html)
- [powershell core](https://learn.microsoft.com/en-us/powershell/scripting/install/installing-powershell-on-windows?view=powershell-7.5)
### Setting Up the Environment
#### Authenticate with Azure
Before executing the setup commands, log in using Azure CLI with the appropriate user:
```bash
az login
```
Use your `ai-dev` or `ai-prod` user.
#### Configure Dependencies
Run the following commands to initialize the development environment:
```bash
just dev
# Set up PostgreSQL secrets
dotnet user-secrets set "PostgreSQLSettings:AdminConnectionString" $(just dev-pgsql-connection-string) --id Altinn.Authorization
dotnet user-secrets set "PostgreSQLSettings:AuthorizationDbAdminPwd" admin --id Altinn.Authorization
dotnet user-secrets set "PostgreSQLSettings:ConnectionString" $(just dev-pgsql-connection-string) --id Altinn.Authorization
dotnet user-secrets set "PostgreSQLSettings:AuthorizationDbPwd" admin --id Altinn.Authorization
# Set Azure subscription
az account set --subscription 45177a0a-d27e-490f-9f23-b4726de8ccc1
# Configure Platform Token Test Tool credentials
dotnet user-secrets set "Platform:Token:TestTool:Endpoint" $(az keyvault secret show --id=https://rgaltinnauth001local.vault.azure.net/secrets/Platform--Token--TestTool--Endpoint --query value --output tsv) --id Altinn.Authorization
dotnet user-secrets set "Platform:Token:TestTool:Password" $(az keyvault secret show --id=https://rgaltinnauth001local.vault.azure.net/secrets/Platform--Token--TestTool--Password --query value --output tsv) --id Altinn.Authorization
dotnet user-secrets set "Platform:Token:TestTool:Username" $(az keyvault secret show --id=https://rgaltinnauth001local.vault.azure.net/secrets/Platform--Token--TestTool--Username --query value --output tsv) --id Altinn.Authorization
```
### Bootstrap Access Management
1. Open [`http://localhost:8000`](http://localhost:8000) in a browser.
2. Log in using:
- **Username:** `admin@admin.com`
- **Password:** `admin`
3. Create the `accessmgmt` database and configure roles:
- **Role:** `platform_authorization` (Privileges: `can_login`)
- **Role:** `platform_authorization_admin` (Privileges: `can_login`, `superuser`)