Details
-
Type: extRequest
-
Status: Closed
-
Priority: Major
-
Resolution: Done
-
Fix Version/s: 2021
-
Component/s: FIWARE-TECH-HELP
-
Labels:None
-
Sender Email:
-
HD-Chapter:Security
-
HD-Enabler:KeyRock
Description
Greetings
I'm currently looking into the possibility to set up a Rancher server for Docker container orchestration, and I was looking to somehow extend Rancher's Authentication service to allow accessing the Rancher server using Fiware Lab accounts via Oauth. I have a few questions:
- What are the available API endpoints for retrieving user informations? The /user endpoint is already described in the doc (http://fiware-idm.readthedocs.io/en/latest/oauth2.html#get-user-information-and-roles), but is there more that isn't documented?
- I noticed while testing that the organizations field always comes up empty in the response, even despite having registered an organization.
- Is it normal that the /user endpoint can also be accessed by writing any string that begins with user? As in, it also works with /users, /userabcdefg, and so forth.
Any help would be appreciated, as ideally I want to be able to replace the Github implementation for Rancher's authentication service with one for Fiware Lab, but reusing as much of the available code as possible, to avoid future issues.
Regards.
Gabriele Cerfoglio
__________________________________________________________________________________________
You can get more information about our cookies and privacy policies on the following links:
- http://forge.fiware.org/plugins/mediawiki/wiki/fiware/index.php/FIWARE_Privacy_Policy
- http://forge.fiware.org/plugins/mediawiki/wiki/fiware/index.php/Cookies_Policy_FIWARE
Fiware-lab-help mailing list
Fiware-lab-help@lists.fiware.org
https://lists.fiware.org/listinfo/fiware-lab-help
[Created via e-mail received from: gabriele.cerfoglio@martel-innovate.com]
I will try to answer your questions:
That's the only one.
The response only receives those organizations in which the user has an assigned role (in the scope of the application that has created the token).
It shouldn't... We will fix it ASAP