#+title: Wanderson FY23 Report
#+subtitle: back to one month older
#+date: 2023-09-26
#+options: H:6 ^:nil

*** Wanderson [58]

**** iroh [53 (41 / 12)]

- ~W30~ Design doc to webhook support on Entitlement create/update [[https://github.com/advthreat/iroh/pull/8112][#8112]]
- ~W30~ NewEvent ~:created-at~ is optional for IROH internal calls and mandatory to HTTP events [[https://github.com/advthreat/iroh/pull/8121][#8121]]
- ~W30~ [IROH Auth] Support XDR ~signup-url~ [[https://github.com/advthreat/iroh/pull/8117][#8117]]
- ~W27~ [IROH Auth] Make ~use-cache-to-build-identity~ throw if short JWT info is missing [[https://github.com/advthreat/iroh/pull/8032][#8032]]
- ~W27~ [IROH Auth] Change error message for org-level-authorization clients [[https://github.com/advthreat/iroh/pull/8034][#8034]]
- ~W27~ Invitation missing test cases [[https://github.com/advthreat/iroh/pull/8030][#8030]]
- ~W24~ [IROH Auth] RBAC JWT Revocation on ~role~ change [[https://github.com/advthreat/iroh/pull/7875][#7875]]
- ~W21~ [IROH Auth] Fix wrong role name in Invites for XDR roles [[https://github.com/advthreat/iroh/pull/7908][#7908]]
- ~W20~ [IROH Auth] add ~:entitlement-summary~ to profile org return values [[https://github.com/advthreat/iroh/pull/7896][#7896]]
- ~W20~ [IROH Auth] Fix ~/profile~ swagger.json bug [[https://github.com/advthreat/iroh/pull/7897][#7897]]
- ~W20~ [IROH Auth] add Entitlement Summary to ~whoami~ [[https://github.com/advthreat/iroh/pull/7894][#7894]]
- ~W20~ [IROH Auth] Expose entitlement methods in Profile webservice [[https://github.com/advthreat/iroh/pull/7881][#7881]]
- ~W20~ [IROH Auth] Declare entitlement-svc in default-bootstrap [[https://github.com/advthreat/iroh/pull/7891][#7891]]
- ~W20~ [IROH Auth] fix EntitlementSummary structure [[https://github.com/advthreat/iroh/pull/7886][#7886]]
- ~W20~ [IROH Auth] Decide JWT format based on the new ~client~'s ~tokens-format~ property [[https://github.com/advthreat/iroh/pull/7789][#7789]]
- ~W19~ [IROH Auth] Fix potential bug in PROD in OrgAccessRequests for xdr-roles [[https://github.com/advthreat/iroh/pull/7861][#7861]]
- ~W19~ [IROH Auth] - Remove ~xdr-instance-id~ [[https://github.com/advthreat/iroh/pull/7860][#7860]]
- ~W19~ [IROH Auth] Restrict ~xdr-roles~ by ~env~ and ~org~ feature flags [[https://github.com/advthreat/iroh/pull/7855][#7855]]
- ~W17~ [IROH Auth] introducing ~TimeService~ in ~AuthService~ [[https://github.com/advthreat/iroh/pull/7806][#7806]]
- ~W17~ [IROH Auth] allow only ~iroh-core.time~ in oauth2.core ns [[https://github.com/advthreat/iroh/pull/7793][#7793]]
- ~W16~ [IROH Auth] - Update IROH Web middleware to build short JWTs with profile data [[https://github.com/advthreat/iroh/pull/7671][#7671]]
- ~W12~ [IROH Auth] - update ~check-refresh-token~ function [[https://github.com/advthreat/iroh/pull/7669][#7669]]
- ~W12~ [IROH Auth] - Update Design docs for Short JWT Epic [[https://github.com/advthreat/iroh/pull/7670][#7670]]
- ~W10~ [IROH Auth] ~/profile/permissions~ endpoint  [[https://github.com/advthreat/iroh/pull/7562][#7562]]
- ~W08~ Patch ~compojure-api~ to allow endpoints with string-keys (without keywordize the request ~:body~) [[https://github.com/advthreat/iroh/pull/7574][#7574]]
- ~W08~ [IROH Auth] Include route ~/profile/scopes~ [[https://github.com/advthreat/iroh/pull/7553][#7553]]
- ~W07~ [IROH Auth] - Store Short JWTs [[https://github.com/advthreat/iroh/pull/7476][#7476]]
- ~W05~ [IROH Auth] refactor ~gen-short-tokens~ to avoid code duplication [[https://github.com/advthreat/iroh/pull/7485][#7485]]
- ~W04~ Allow wildcard login origin in TEST env [[https://github.com/advthreat/iroh/pull/7474][#7474]]
- ~W03~ [IROH Auth] Generate Short JWT tokens [[https://github.com/advthreat/iroh/pull/7450][#7450]]
- ~W02~ [IROH Auth] Short JWT design [[https://github.com/advthreat/iroh/pull/7436][#7436]]
- ~W50~ org-svc using crud-context instead of gen-ctx [[https://github.com/advthreat/iroh/pull/7306][#7306]]
- ~W49~ IROH-Auth: Remove ~oauth/scopes~ claims from AO jwts [[https://github.com/advthreat/iroh/pull/7368][#7368]]
- ~W48~ RBAC: Remove confusing and big claims from JWT [[https://github.com/advthreat/iroh/pull/7363][#7363]]
- ~W48~ Remove the usage of ~invitee-name~ from the invite-svc [[https://github.com/advthreat/iroh/pull/7356][#7356]]
- ~W41~ ~InviteService~ - Using HOF ~get-valid-user!~ and ~get-valid-org!~ [[https://github.com/advthreat/iroh/pull/7045][#7045]]
- ~W36~ ~ProvisioningService~ - fix folder structure [[https://github.com/advthreat/iroh/pull/7047][#7047]]
- ~W36~ [IROH-Auth] Specify the tenant at login [[https://github.com/advthreat/iroh/pull/7036][#7036]]
- ~W35~ Add query param ~show-tenant-selector~ to force redirect to Registration UI [[https://github.com/advthreat/iroh/pull/7034][#7034]]
- ~W34~ remove ctim tutorial pngs from trojan scan [[https://github.com/advthreat/iroh/pull/7005][#7005]]
- ~W31~ Cleanup AuthService [[https://github.com/advthreat/iroh/pull/6944][#6944]]

_between 12 and 13 months ago_

- ~W31~ cleanup gen user-identity-jwt code [[https://github.com/advthreat/iroh/pull/6942][#6942]]
- ~W30~ Format relative dates in account-stats [[https://github.com/advthreat/iroh/pull/6920][#6920]]
- ~W30~ bugfix: constrained expiration time for access-token generated by the switch-tenant endpoint [[https://github.com/advthreat/iroh/pull/6902][#6902]]
- ~W29~ Bugfix redirect users rule remove disabled orgs [[https://github.com/advthreat/iroh/pull/6924][#6924]]
- ~W29~ add more logs to WebhookRunner to inspect scopes-restriction logic [[https://github.com/advthreat/iroh/pull/6922][#6922]]
- ~W28~ safer implementation to list accounts [[https://github.com/advthreat/iroh/pull/6893][#6893]]
- ~W28~ bugfix - remove disabled orgs from Registration UI org selector [[https://github.com/advthreat/iroh/pull/6884][#6884]]
- ~W28~ bugfix listing users that do not belong to your user-identity [[https://github.com/advthreat/iroh/pull/6889][#6889]]
- ~W28~ Cleaning up ~iroh-auth/test_helpers/-*~ files [[https://github.com/advthreat/iroh/pull/6872][#6872]]
- ~W27~ Add ProfileService [[https://github.com/advthreat/iroh/pull/6829][#6829]]
- ~W27~ bugfix - update login-date of the user on switching tenants [[https://github.com/advthreat/iroh/pull/6866][#6866]]
- ~W27~ bugfix - include email to avoid errors for orgs with whitelist settings [[https://github.com/advthreat/iroh/pull/6862][#6862]]
**** tenzin [1 (1 / 0)]

- ~W02~ Update GPG Wanderson Ferreira [[https://github.com/advthreat/tenzin/pull/2648][#2648]]
**** tenzin-config [4 (3 / 1)]

- ~W30~ config to support signup-url xdr [[https://github.com/advthreat/tenzin-config/pull/955][#955]]
- ~W07~ add postgres and redis-cache store for IROH Auth JWTs [[https://github.com/advthreat/tenzin-config/pull/839][#839]]
- ~W36~ fix provisioning path [[https://github.com/advthreat/tenzin-config/pull/717][#717]]

_between 12 and 13 months ago_

- ~W27~ include new profile-svc [[https://github.com/advthreat/tenzin-config/pull/675][#675]]