Skip to content
This repository has been archived by the owner on Apr 27, 2023. It is now read-only.

libero/continuum-adaptor

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

169 Commits
.github
.github
 
 
.scripts @ 30a5acf
.scripts @ 30a5acf
 
 
config
config
 
 
src
src
 
 
tests
tests
 
 
.eslintignore
.eslintignore
 
 
.eslintrc.js
.eslintrc.js
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
.prettierrc.js
.prettierrc.js
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
docker-compose.build.yml
docker-compose.build.yml
 
 
docker-compose.test.yml
docker-compose.test.yml
 
 
docker-compose.yml
docker-compose.yml
 
 
jest.config.js
jest.config.js
 
 
maintainers.txt
maintainers.txt
 
 
package.json
package.json
 
 
tsconfig.build.json
tsconfig.build.json
 
 
tsconfig.json
tsconfig.json
 
 
yarn.lock
yarn.lock
 
 

Repository files navigation

continuum-adaptor

Configuration

Copy the example config file

cp config/config.example.json config/config.json

Overview

The purpose of this service is to implement an interface to connect the eLife journal to libero reviewer

A connector service so that eLife's deployment of libero can authenticate using the existing journal login system. After successful authentication, this service will redirect to an endpoint, with a signed jwt token appended to the URL. This token will then be used by the client to authenticate it's subsequent HTTP requests with other services in the system. This token will contain some information about the user, provided by the profiles service.

Things to define for continuum-adaptor to be useful long term

  • We need to stabilise the interface for the auth token, so that we can swap out this service with something else
  • We need some way to manually test the login flow from end to end. This means that it needs to be:
    • Deployed somewhere - the journal auth subsystem needs to know where to redirect to
    • Configurable - the service needs to work in many different environments, including but not limited to: locally (without docker), locally (inside docker), unstable libero environment, unstable eLife environment
    • Working - This service is a key part of a user's entry point into the application, it provides the user with their permissions and their authentication token - it needs to be reliable!
  • We have an issue with using the profiles service, it does not contain information about staff members, and there is no good mechanism to map profiles records to records in the people service (the people service is for staff). Therefore, we need some way to map either profiles.id or profiles.orcid to some information about that user's permission, so we can calculate the role properly.
  • Also this service needs to know about the journal secret so it can verify the tokens provided by it. I think we should use a separate secret to sign and verify tokens issued internally to by libero reviewer, theres no reason for reviewer to know about the secrets used by journal.

There are proper docs here: Spec document

About

No description or website provided.

Topics

libero-reviewer

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

6 watching

Forks

0 forks
Report repository

Releases

6 tags

Packages

No packages published

Contributors 10

Languages