yogsototh/deft
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

notes/cisco_ft_securex_registration.org

Browse source
This commit is contained in:
Yann Esposito (Yogsototh) 2022-04-01 17:38:09 +02:00
parent 9e89c2e4d9
commit 77f78096fb
Signed by untrusted user who does not match committer: yogsototh
GPG key ID: 7B19A4C650D59646
1 changed files with 21 additions and 27 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

48
notes/cisco_ft_securex_registration.org
View file

@ -207,11 +207,24 @@ following schema:
#+begin_src clojure
(defprotocol OrgAccessRequestService
"See iroh-auth.registration.org-access-request.schemas/ServiceFns for schemas."
:extend-via-metadata true
;; Internal CRUD+Search almost only use iroh-crud
(raw-search-org-access-requests
[this filter-map pagination-params]
"Search all OrgAccessRequest grants")
(raw-get-org-access-request
[this org-access-request-id]
"Return the OrgAccessRequest grant")
(raw-patch-org-access-request
[this org-access-request-id org-access-request-patch]
"Update the status of an OrgAccessRequest.")
;; service function for the Admins logged in SecureX
;; User filtered CRUD+Search for REST API related methods
(search-org-access-requests-for-org
;; The first argument is a RequestIdentity (:identity request) generated from a normal JWT
;; via the ring-jwt-middleware.
(search-org-access-requests
[this request-identity filter-map pagination-params]
"Search all OrgAccessRequest of the org of the user of the request-identity")
@ -225,6 +238,8 @@ following schema:
Note user creation could be a side effect.")
;; For the New Registration Page (the user logged in via the IdP successfully)
;; The first argument is a UserIdentity (:identity request) it will not contain
;; any data related to any org
(search-org-access-requests-for-user-identity
[this user-identity filter-map pagination-params]
"Search all OrgAccessRequest made by this user identity accross all orgs.
@ -233,32 +248,11 @@ following schema:
(create-org-access-request
[this user-identity org-id]
"Create a new OrgAccessRequest.")
"Create a new OrgAccessRequest. Should potentially send emails along the way")
(delete-org-access-request
[this user-identity org-access-request-id]
"Remove an org request access.")
;; Internal CRUD+Search
(raw-search-org-access-requests
[this filter-map pagination-params]
"Search all OrgAccessRequest grants")
(raw-get-org-access-request
[this org-access-request-id]
"Return the OrgAccessRequest grant")
(raw-patch-org-access-request
[this org-access-request-id org-access-request-patch]
"Update the status of an OrgAccessRequest.")
;; To be used in the `iroh-auth-web-service` directly without any password
(patch-org-access-request
[this org-access-request-id org-access-request-secret org-access-request-patch]
"Similar to patch-org-access-request but for non logged in users can be used by
providing both the OrgAccessRequest id and secret.
That way we could build a URL into emails sent to admins to create
the new user in the correct org."))
(renew-org-access-request
[this user-identity org-id]
"Renew an OrgAccessRequest. Mainly should send the email again and change the updated-at date."))
#+end_src
***** =1= search/get/patch
/Estimate: 1 rcd/