Entitlements merge requestshttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests2024-03-28T10:56:41Zhttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/651added roles for Register SA (GONRG-9059)2024-03-28T10:56:41ZRiabokon Stanislav(EPAM)[GCP]added roles for Register SA (GONRG-9059)Added "service.secret.viewer", "service.secret.admin" to use Register Service.Added "service.secret.viewer", "service.secret.admin" to use Register Service.M23 - Release 0.26Riabokon Stanislav(EPAM)[GCP]Riabokon Stanislav(EPAM)[GCP]https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/653AWS - Define the log level for http.wire to avoid logging of credentials in t...2024-03-27T16:59:10ZGuillaume CailletAWS - Define the log level for http.wire to avoid logging of credentials in the Pipeline logs## Type of change
- [X] Bug Fix
- [ ] Feature
**Please provide link to gitlab issue or ADR(Architecture Decision Record)**
## Does this introduce a change in the core logic?
- [NO]
## Does this introduce a change in the cloud provi...## Type of change
- [X] Bug Fix
- [ ] Feature
**Please provide link to gitlab issue or ADR(Architecture Decision Record)**
## Does this introduce a change in the core logic?
- [NO]
## Does this introduce a change in the cloud provider implementation, if so which cloud?
- [X] AWS
- [ ] Azure
- [ ] Google Cloud
- [ ] IBM
## Does this introduce a breaking change?
- [NO]
## What is the current behavior?
## What is the new/expected behavior?
AWS Change only.
Integrations tests logs are too verbose and dump the raw http requests, with their payload.
This could lead to leaked credentials.````M23 - Release 0.26Guillaume CailletGuillaume Caillethttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/652fix aws test failure2024-03-27T11:36:36ZYunhua Koglinfix aws test failureYunhua KoglinYunhua Koglinhttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/649Moved Add Group Member OID validation integration test behind a feature flag2024-03-26T09:52:45ZDeepa KumariMoved Add Group Member OID validation integration test behind a feature flagRecently merged MR: https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/642 added some integration tests, which are testing a behavior based on a feature flag, and since its an environment ...Recently merged MR: https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/642 added some integration tests, which are testing a behavior based on a feature flag, and since its an environment based implementation, its tests should also behave similarly.
So added one pipeline variable: AZURE_OID_VALIDATION_INTEGRATION_TESTS. And, added assume statements to execute the test based on these variables.
Linked issue: https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/issues/166M23 - Release 0.26Deepa KumariDeepa Kumarihttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/642Added oid validation for azure2024-03-22T11:13:34ZDeepa KumariAdded oid validation for azureAdded OID validation for Azure, below scenarios covered with the help of https://community.opengroup.org/osdu/platform/system/lib/cloud/azure/os-core-lib-azure/-/merge_requests/340
Issue: https://community.opengroup.org/osdu/platform/se...Added OID validation for Azure, below scenarios covered with the help of https://community.opengroup.org/osdu/platform/system/lib/cloud/azure/os-core-lib-azure/-/merge_requests/340
Issue: https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/issues/166
1. Group
2. Default Service principal Client ID/OID, multiple service principal's in environment
3. User
4. All validations are behind feature flag and apply to User type of node being added from entitlements.
Common code changes:
1. Only integration tests where overriding member to be added was necessary, so stubbed it additional default members inside ConfigurationService class, and tests referring from there, instead of direct hardcoded values
Azure:
1. Added other validations for integration tests, uncovered from common scenarios, additional variables introduced:
- AZURE_AD_VALID_OID_USER1
- AZURE_AD_VALID_OID_USER2
- AZURE_AD_NO_DATA_ACCESS_SP_OID
- AZURE_AD_GROUP_OIDM23 - Release 0.26Deepa KumariDeepa Kumarihttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/646[GONRG-9422]: Remove springProfilesActive explicit setting2024-03-20T12:04:19ZMykola Ronik [EPAM / GCP][GONRG-9422]: Remove springProfilesActive explicit settingM23 - Release 0.26Mykola Ronik [EPAM / GCP]Mykola Ronik [EPAM / GCP]https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/643GONRG-9390: cim bootstrap2024-03-20T11:52:25ZYauheni Rykhter (EPAM)GONRG-9390: cim bootstrapM23 - Release 0.26Yauheni Rykhter (EPAM)Yauheni Rykhter (EPAM)https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/600Use full URL instead of relative path2024-03-19T17:08:41ZLawrence ChanUse full URL instead of relative path* Issue Reference: [#68](https://community.opengroup.org/osdu/platform/security-and-compliance/legal/-/issues/68)
* Added configuration `api.server.fullUrl.enabled` to enable full server url in OpenAPI swagger
* Currently only in Azure i...* Issue Reference: [#68](https://community.opengroup.org/osdu/platform/security-and-compliance/legal/-/issues/68)
* Added configuration `api.server.fullUrl.enabled` to enable full server url in OpenAPI swagger
* Currently only in Azure it is enabled. For Other \[CSP/Common Core\] there is no change.
* Added the property `server.servlet.contextPath` to the test properties otherwise it fails when initializing the server for springboot unit tests.
### Configuration Details
* `api.server.fullUrl.enabled=true` It will generate full server url in the OpenAPI swagger
* `api.server.fullUrl.enabled=false` It will generate only the contextPath
* Reference: https://springdoc.org/faq.html#_how_is_server_url_generatedM23 - Release 0.26https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/629[GONRG-8953] Move core-plus to common pipeline2024-03-19T17:08:39ZDanylo Vanin (EPAM)[GONRG-8953] Move core-plus to common pipelineM23 - Release 0.26Danylo Vanin (EPAM)Danylo Vanin (EPAM)https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/636[GONRG-9211] Added labels to gc helm2024-03-19T17:08:38ZDanylo Vanin (EPAM)[GONRG-9211] Added labels to gc helmM23 - Release 0.26Danylo Vanin (EPAM)Danylo Vanin (EPAM)https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/638[GONRG-9206]: transferring system partition inside bootstrap for GC2024-03-19T17:08:37ZMykola Ronik [EPAM / GCP][GONRG-9206]: transferring system partition inside bootstrap for GCM23 - Release 0.26Mykola Ronik [EPAM / GCP]Mykola Ronik [EPAM / GCP]https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/644[GONRG-9205]: remove DATA_PARTITION_ID_LIST2024-03-19T17:08:35ZMykola Ronik [EPAM / GCP][GONRG-9205]: remove DATA_PARTITION_ID_LISTM23 - Release 0.26Mykola Ronik [EPAM / GCP]Mykola Ronik [EPAM / GCP]https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/648fix variable reassigning in bootstrap functions2024-03-19T11:57:10ZMykola Ronik [EPAM / GCP]fix variable reassigning in bootstrap functionsM23 - Release 0.26Mykola Ronik [EPAM / GCP]Mykola Ronik [EPAM / GCP]https://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/647disable mongodb on aws2024-03-18T14:52:50ZYunhua Koglindisable mongodb on awsM23 - Release 0.26Yunhua KoglinYunhua Koglinhttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/639documentation and documentation pipeline update2024-03-08T13:59:57ZShane Hutchinsdocumentation and documentation pipeline update- publish documentation to pages via pipeline
- various documentation updates- publish documentation to pages via pipeline
- various documentation updatesM23 - Release 0.26Shane HutchinsShane Hutchinshttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/634Fix 500 errors for invalid partition2024-03-04T14:22:11ZDerek HudsonFix 500 errors for invalid partitionFixes the error message when an invalid partition is specified.
It used to return a 500 error, but with the latest core code change, it will now return a 4XX code.Fixes the error message when an invalid partition is specified.
It used to return a 500 error, but with the latest core code change, it will now return a 4XX code.M23 - Release 0.26Derek HudsonDerek Hudsonhttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/635aws code quality improvement2024-03-01T18:43:31ZBruce Jinaws code quality improvementImprove code quality in AWS codeImprove code quality in AWS codeM23 - Release 0.26Bruce JinBruce Jinhttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/631upgrade core-lib-azure to java172024-02-29T14:58:39ZVidyaDharani Lokamupgrade core-lib-azure to java17- upgrade `core-lib-azure` to `0.26.0-SNAPSHOT`.- upgrade `core-lib-azure` to `0.26.0-SNAPSHOT`.M23 - Release 0.26VidyaDharani LokamVidyaDharani Lokamhttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/632GC, CIM, update README.md, add required groups for no access tester2024-02-27T14:14:30ZRustam Lotsmanenko (EPAM)rustam_lotsmanenko@epam.comGC, CIM, update README.md, add required groups for no access testerM23 - Release 0.26Rustam Lotsmanenko (EPAM)rustam_lotsmanenko@epam.comRustam Lotsmanenko (EPAM)rustam_lotsmanenko@epam.comhttps://community.opengroup.org/osdu/platform/security-and-compliance/entitlements/-/merge_requests/628Update Dockerfile2024-02-15T12:48:00ZRiabokon Stanislav(EPAM)[GCP]Update DockerfileM23 - Release 0.26Riabokon Stanislav(EPAM)[GCP]Riabokon Stanislav(EPAM)[GCP]