Merge branch 'main' of github.com:sartography/spiff-arena into main

2025-01-13 11:05:56 +00:00 · 2023-02-14 19:39:46 -05:00 · 2023-02-14 19:39:46 -05:00 · 759b2bffa5
commit 759b2bffa5
parent c8a83f80b6 0588ef0314
3 changed files with 18 additions and 8 deletions
--- a/spiffworkflow-backend/bin/get_token
+++ b/spiffworkflow-backend/bin/get_token
@ -28,13 +28,16 @@ if [[ -z "${BACKEND_BASE_URL:-}" ]]; then
  # BACKEND_BASE_URL=http://localhost:7000
  BACKEND_BASE_URL=https://api.dev.spiffworkflow.org
 fi
-REALM_NAME=spiffworkflow
+if [[ -z "${BACKEND_CLIENT_ID:-}" ]]; then
  export BACKEND_CLIENT_ID=spiffworkflow-backend
 fi
 if [[ -z "${BACKEND_CLIENT_SECRET:-}" ]]; then
  export BACKEND_CLIENT_SECRET="JXeQExm0JhQPLumgHtIIqf52bDalHz0q"  # noqa: S105
 fi
 USERNAME=${1-fin}
 PASSWORD=${2-fin}
 REALM_NAME=${3-spiffworkflow}
 FRONTEND_CLIENT_ID=spiffworkflow-frontend
 BACKEND_CLIENT_ID=spiffworkflow-backend
 BACKEND_CLIENT_SECRET="JXeQExm0JhQPLumgHtIIqf52bDalHz0q"  # noqa: S105
 SECURE=false
 BACKEND_BASIC_AUTH=$(echo -n "${BACKEND_CLIENT_ID}:${BACKEND_CLIENT_SECRET}" | base64)
@ -42,7 +45,7 @@ KEYCLOAK_URL=$KEYCLOAK_BASE_URL/realms/$REALM_NAME/protocol/openid-connect/token
 >&2 echo "Using Keycloak: $KEYCLOAK_URL"
 >&2 echo "realm: $REALM_NAME"
->&2 echo "client-id: $FRONTEND_CLIENT_ID"
+>&2 echo "client-id: $BACKEND_CLIENT_ID"
 >&2 echo "username: $USERNAME"
 >&2 echo "password: $PASSWORD"
 >&2 echo "secure: $SECURE"
--- a/spiffworkflow-backend/bin/login_with_users
+++ b/spiffworkflow-backend/bin/login_with_users
@ -23,11 +23,18 @@ if [[ -z "${1:-}" ]]; then
  >&2 echo "usage: $(basename "$0") [user_list]"
  exit 1
 fi
 REALM_NAME=${2-spiffworkflow}
 while read -r input_line; do
  if ! grep -qE '(^#|email)' <<<"$input_line" ; then
    username=$(awk -F '@' '{print $1}' <<<"$input_line")
-    access_token=$("${script_dir}/get_token" "$username" "$username")
+    access_token=$("${script_dir}/get_token" "$username" "$username" "$REALM_NAME")
-    curl -v -X POST "${BACKEND_BASE_URL}/v1.0/login_with_access_token?access_token=${access_token}" -H "Authorization: Bearer $access_token"
+    if [[ -z "$access_token" || "$access_token" == "null" ]]; then
      >&2 echo "ERROR: failed to get access token for '$username'"
    else
      echo "access_token: ${access_token}"
      curl -v -X POST "${BACKEND_BASE_URL}/v1.0/login_with_access_token?access_token=${access_token}" -H "Authorization: Bearer $access_token"
    fi
  fi
 done <"$user_list"
--- a/spiffworkflow-backend/keycloak/test_user_lists/status
+++ b/spiffworkflow-backend/keycloak/test_user_lists/status
@ -1,5 +1,5 @@
 email,spiffworkflow-employeeid
-admin@spiffworkflow.org
+# admin@spiffworkflow.org
 amir@status.im
 app.program.lead@status.im,121
 core@status.im,113