argos/dmp-backend/web/src/main/resources/config/security.yml

web:
  security:
    enabled: true
    authorized-endpoints: [ api ]
    allowed-endpoints: [ api/public, api/description/public, api/dashboard/public ]
    idp:
      api-key:
        enabled: true
        authorization-header: Authorization
        client-id: ${IDP_APIKEY_CLIENT_ID:}
        client-secret: ${IDP_APIKEY_CLIENT_SECRET:}
        scope: ${IDP_APIKEY_SCOPE:}
      resource:
        token-type: JWT #| opaque
        opaque:
          client-id: ${IDP_OPAQUE_CLIENT_ID:}
          client-secret: ${IDP_OPAQUE_CLIENT_SECRET:}
        jwt:
          claims: [ role, x-role ]
          issuer-uri: ${IDP_ISSUER_URI:}
authn refactor 2023-10-11 16:53:12 +02:00			`web:`
			`security:`
			`enabled: true`
			`authorized-endpoints: [ api ]`
add DashboardStatistics 2023-12-05 17:13:40 +01:00			`allowed-endpoints: [ api/public, api/description/public, api/dashboard/public ]`
authn refactor 2023-10-11 16:53:12 +02:00			`idp:`
			`api-key:`
			`enabled: true`
			`authorization-header: Authorization`
			`client-id: ${IDP_APIKEY_CLIENT_ID:}`
			`client-secret: ${IDP_APIKEY_CLIENT_SECRET:}`
			`scope: ${IDP_APIKEY_SCOPE:}`
			`resource:`
task #9045 Refactor authentication mechanism to support using Keycloak 2023-10-12 15:16:19 +02:00			`token-type: JWT #\| opaque`
authn refactor 2023-10-11 16:53:12 +02:00			`opaque:`
			`client-id: ${IDP_OPAQUE_CLIENT_ID:}`
			`client-secret: ${IDP_OPAQUE_CLIENT_SECRET:}`
			`jwt:`
			`claims: [ role, x-role ]`
remove zenodo from user info 2023-10-17 11:40:47 +02:00			`issuer-uri: ${IDP_ISSUER_URI:}`