Skip to content

OpenConext/OpenConext-Invite

27 Branches37 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

phavekesphavekes
Release 0.0.16
Jul 2, 2024
7c60130 · Jul 2, 2024

History

576 Commits
.github
.github
Jun 24, 2024
client
client
Jul 2, 2024
docs
docs
Apr 12, 2024
provisioning-mock
provisioning-mock
Jul 2, 2024
server
server
Jul 2, 2024
welcome
welcome
Jul 2, 2024
.gitignore
.gitignore
Dec 5, 2023
.markdownlint.yaml
.markdownlint.yaml
Oct 3, 2023
.markdownlintignore
.markdownlintignore
Oct 3, 2023
.yamllint.yaml
.yamllint.yaml
Oct 3, 2023
CHANGELOG.md
CHANGELOG.md
Jul 2, 2024
LICENSE
LICENSE
May 9, 2023
README.md
README.md
May 28, 2024
_config.yml
_config.yml
Oct 3, 2023
pom.xml
pom.xml
Jul 2, 2024
template.hbs
template.hbs
Oct 3, 2023

Repository files navigation

Openconext-Invite

Build Status codecov

Getting started

System Requirements

  • Java 17
  • Maven 3

First install Java 17 with a package manager and then export the correct the JAVA_HOME. For example on macOS:

export JAVA_HOME=/Library/Java/JavaVirtualMachines/openjdk-17.jdk/Contents/Home/

Then create the MySQL database:

DROP DATABASE IF EXISTS access;
CREATE DATABASE access CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_ai_ci;
CREATE USER 'access'@'localhost' IDENTIFIED BY 'secret';
GRANT ALL privileges ON `access`.* TO 'access'@'localhost';

Building and running

This project uses Spring Boot and Maven. To run locally, type:

mvn spring-boot:run

To build and deploy (the latter requires credentials in your maven settings):

mvn clean deploy

Mail

In the default application.properties the mail host is localhost and the port is 1025. Run mailpit to capture mails. See https://github.com/axllent/mailpit

Endpoints

https://invite.test.surfconext.nl/ui/swagger-ui/index.html

https://mock.test.surfconext.nl/

https://welcome.test.surfconext.nl/

https://invite.test.surfconext.nl/

Mock

If you want to use the mock-provisioning, add the following metadata in Manage.

SCIM:

"provisioning_type": "scim",
"scim_url": "https://mock.test.surfconext.nl/api/scim/v2",
"scim_user": "user",
"scim_password": "secret",
"scim_update_role_put_method": true

eVA

"provisioning_type": "eva",
"eva_token": "secret",
"eva_guest_account_duration": 30
"eva_url": "https://mock.test.surfconext.nl/eva",

Graph

"provisioning_type": "graph",
"graph_url": "https://mock.test.surfconext.nl/graph/users",
"graph_client_id" : "client_id",
"graph_domain" : "hartingcollege.onmicrosoft.com",
"graph_secret" : "secret",
"graph_tenant": "tenant"

Local endpoints

Login with Mujina IdP and user admin to become super-user in the local environment

http://localhost:8888/ui/swagger-ui/index.html

http://localhost:8081/

http://localhost:4000

http://localhost:3000

Institution Admin

To become an institution admin in invite, add the following values as eduPersonEntitlements using Mujina:

  • urn:mace:surfnet.nl:surfnet.nl:sab:organizationGUID:ad93daef-0911-e511-80d0-005056956c1a
  • urn:mace:surfnet.nl:surfnet.nl:sab:role:SURFconextverantwoordelijke

Technical documentation

https://openconext.github.io/OpenConext-Invite/

Provisioning Secrets

The secrets (passwords / API-keys) used in provisionings are encrypted in OpenConext-Manage using keypairs.

Create private / public keypair

openssl genrsa -traditional -out private_key.pem 2048
openssl rsa -pubout -in private_key.pem -out public_key.pem

Convert private key to pkcs8 format in order to import it from Java

openssl pkcs8 -topk8 -in private_key.pem -inform pem -out private_key_pkcs8.pem -outform pem -nocrypt

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

3 stars

Watchers

10 watching

Forks

4 forks
Report repository

Releases 21

Release 0.0.27 Latest
Feb 11, 2025
+ 20 releases

Packages 4

Contributors 9

Languages