soar-registry-identity 1.0.0 → 1.0.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 9437adb33b4379cc43f32fd3114f5747f232f6c8
-  data.tar.gz: 8da8b86504e04fe071dc025023ce0dd09df82a16
+  metadata.gz: 61e1631e0c686f692e76bcdcbb79b81e959650eb
+  data.tar.gz: bdbc70c78f68790210ce731a92c17832ad586a99
 SHA512:
-  metadata.gz: 3a8048aaeb8838dbe4addf80b864b2792790a7ad13ea432c8aa244feee4f807b409498cb859d8c3e206181643c2049b3d6402681f6ac7e81e1a0cdddcae19821
-  data.tar.gz: a35ba39309eee4ed3ded67690cca8090f52b09e906b17ab4bfb039eef8a98998948c42d442d87e94aad131a9690c26a5dd36ce6974a6c903f2586734b215b4b3
+  metadata.gz: 7143547d7152478e3b0659975cc0cacea568ec0e427946aeb481b433bbb5df093666d92848a987cc88d154561b667601547e6f88498b8d9199472ec63d857130
+  data.tar.gz: 535393b98c3092d75de8e32d2870c69c4c0965a8731a04e0d75d4c95cc84e29130b9ecd28d7df8e5280476e75807c72cdca7b23dbb857a72503148946d947f68

data/README.md

@@ -6,7 +6,6 @@
 ```javascript
 "identities" = [{
     "uuid": "identity-62936e70-1815-439b-bf89-8492855a7e6b",
-    "entity_id": "entity-2d931510-d99f-494a-8c67-87feb05e1594",
     "email": "test+publisher@hetzner.co.za",
     "roles": {
         "staff": {
@@ -26,8 +25,7 @@ Create a directory provider
 require 'soar/registry/directory'
 directory_provider = Soar::Registry::Directory::Provider::Stub.new(
   table: "identities",
-  primary_key: "uuid",
-  index: ["uuid", "entity_id", "email"]
+  index: ["uuid", "email"]
 )
 ```
 
@@ -37,7 +35,7 @@ directory = Soar::Registry::Directory.new(directory_provider)
 ```
 
 ### Staff UUID IDR
-Search for staff by UUID.
+Search for roles, attributes or identifiers by UUID. Used by [policies](https://gitlab.host-h.net/policies) to determine authorization.
 
 Create an identity provider. 
 ```ruby
@@ -51,7 +49,7 @@ Create an IDR
 ```
 
 ### Staff Email IDR
-Search for staff by email address. 
+Search for identifiers by email address. Used by [soar-authentication-identity](https://github.com/hetznerZA/soar-authentication-identity) to translate an authenticated identifier to an UUID.
 ```ruby
 require 'soar/registry/identity'
 identity_provider = Soar::Registry::Identity::Provider::Staff::Email.new(directory: directory)
@@ -72,7 +70,6 @@ identity_provider = Soar::Registry::Identity::Provider::Staff::Email.new(directo
 ### Getting a list of roles
 ```ruby
 > roles = @id_idr.get_roles("identity-820d5660-2204-4f7d-8c04-746313439b81")
-> roles = @email_idr.get_roles("admin@hetzner.co.za")
 > puts roles.inspect
 ["staff", "configuration_publisher", "configuration_consumer"]
 ```
@@ -81,7 +78,6 @@ identity_provider = Soar::Registry::Identity::Provider::Staff::Email.new(directo
 ```ruby
 > role = 'staff'
 > attributes = @id_idr.get_attributes("identity-820d5660-2204-4f7d-8c04-746313439b81", role)
-> attributes = @email_idr.get_attributes("admin@hetzner.co.za", role)
 > puts attributes.inspect
 {
     "staff": {
@@ -94,7 +90,6 @@ identity_provider = Soar::Registry::Identity::Provider::Staff::Email.new(directo
 ### Getting a hash of all attributes
 ```ruby
 > attributes = @id_idr.get_attributes("identity-820d5660-2204-4f7d-8c04-746313439b81")
-> attributes = @email_idr.get_attributes("admin@hetzner.co.za")
 > puts attributes.inspect
 {
     "identity_id" => "identity-820d5660-2204-4f7d-8c04-746313439b81",

data/lib/soar/registry/identity/provider/staff/base.rb

@@ -12,7 +12,7 @@ module Soar
             attr_reader :translator
 
             ##
-            # @param [Hash] configuration
+            # @param directory [Hash] directory configuration
             ##
             def initialize(directory: nil)
               @translator = Soar::Registry::Identity::Provider::Staff::Translator::Default.new

data/lib/soar/registry/identity/provider/staff/email.rb

@@ -12,7 +12,7 @@ module Soar
             # @return [Hash] an identity
             ##
             def calculate_identities(identifier)
-              entries = @directory.search("email", identifier )
+              entries = @directory.search(@directory.index[1], identifier )
               return [@translator.get_identity(entries)[0]]
             end
 

data/lib/soar/registry/identity/test/fixtures/{entries.json → dynamodb.json}

@@ -1,8 +1,6 @@
 [
     {
         "uuid": "identity-62936e70-1815-439b-bf89-8492855a7e6b",
-        "entity_id": "entity-2d931510-d99f-494a-8c67-87feb05e1594",
-        "email": "test+publisher@hetzner.co.za",
         "roles": {
             "staff": {
                 "department": "technical"
@@ -14,8 +12,6 @@
     }, 
     {
         "uuid": "identity-43353f18-8afe-11e6-ae22-56b6b6499611",
-        "entity_id": "entity-2d931510-d99f-494a-8c67-87feb05e1594",
-        "email": "test+consumer@hetzner.co.za",
         "roles": {
             "staff": {},
             "configuration_consumer": {
@@ -26,8 +22,6 @@
     }, 
     {
         "uuid": "identity-820d5660-2204-4f7d-8c04-746313439b81",
-        "entity_id": "entity-bad85eb9-0713-4da7-8d36-07a8e4b00eab",
-        "email": "admin@hetzner.co.za",
         "roles": {
             "staff": {},
             "configuration_publisher": {
@@ -37,20 +31,10 @@
                 "configuration_identifiers": ["*"]
             }
 
-        },
-        "address": {
-            "detail": "Belvedere Office Park, Unit F",
-            "street": "Bella Rosa Street",
-            "suburb": "Tygervalley",
-            "city": "Durbanville",
-            "postal": "7550"
         }
     },
     {
         "uuid": "identity-1ff472a6-8df3-4f13-82c3-89fde26db3cf",
-        "entity_id": "entity-bad85eb9-0713-4da7-8d36-07a8e4b00eab",
-        "email": "none@example.com",
-        "client_nr": "C123456789",
         "roles": {
             "customer": {},
             "reseller": {}

data/lib/soar/registry/identity/test/fixtures/ldap.json

@@ -0,0 +1,19 @@
+[
+    {
+        "entryUUID": "identity-62936e70-1815-439b-bf89-8492855a7e6b",
+        "Email": "test+publisher@hetzner.co.za"
+    }, 
+    {
+        "entryUUID": "identity-43353f18-8afe-11e6-ae22-56b6b6499611",
+        "Email": "test+consumer@hetzner.co.za"
+    }, 
+    {
+        "entryUUID": "identity-820d5660-2204-4f7d-8c04-746313439b81",
+        "Email": "admin@hetzner.co.za"
+    },
+    {
+        "entryUUID": "identity-1ff472a6-8df3-4f13-82c3-89fde26db3cf",
+        "Email": "none@example.com"
+    }
+]
+

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: soar-registry-identity
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.0.1
 platform: ruby
 authors:
 - Charles Mulder
@@ -30,14 +30,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: 2.0.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: 2.0.0
 description: Registry of identities
 email: charles.mulder@hetzner.co.za
 executables: []
@@ -51,7 +51,8 @@ files:
 - lib/soar/registry/identity/provider/staff/email.rb
 - lib/soar/registry/identity/provider/staff/id.rb
 - lib/soar/registry/identity/provider/staff/translator/default.rb
-- lib/soar/registry/identity/test/fixtures/entries.json
+- lib/soar/registry/identity/test/fixtures/dynamodb.json
+- lib/soar/registry/identity/test/fixtures/ldap.json
 homepage: https://gitlab.host-h.net/registries/identity
 licenses:
 - MIT