Home

Welcome to the agile-idm-web-ui wiki!

Current status since last release:

• change the console-based script to generate users and clients to use the API without enforcement to ensure that policies were created for every entity

• bug fixes:

• fix group issue reported in agile-idm-entity-storage: groups now can be deleted without removing entities first. Before there was an inconsistency when this was the case.

• fix issue when the same user logs is with different clients: when the same user used different clients simultaneously, there was only one session valid.

• fix to ensure that the client id is propagated to the provider strategies. This allows strategies to create tokens for a particular oauth2 flow and for a particular client, to ensure that there are no race conditions.

• fix add expiration time, and deletion of tokens that expired (when they are queried) a general cleanup of the token db may still be required in the future...

Functionality for v1.0.1 (Passport and LevelDB pre-release)

• Oauth Server functionality:

• implements the authorization code authorization flow see example here

• implements the client credential authorization flow see example here

• implements the implicit grant see example here

• Storage:

• Proper handling of Oauth2 clients (through entities of type client)

• Storage of tokens

• Generic storage of entities in leveldb

• Policy Enforcement

• Uses owner policies to handle visibility of private attributes, such as the user's password

• Uses role policies (admin) to protect creation of new entities and setting of roles and passwords.