This is an automated email from the ASF dual-hosted git repository.
adutra pushed a change to branch main
in repository https://gitbox.apache.org/repos/asf/polaris.git
from 170461c50 main: Update
registry.access.redhat.com/ubi9/openjdk-21-runtime Docker tag to
v1.22-1.1745840590 (#1499)
add e1c0a1ccd Support for external identity providers (#1397)
No new revisions were added by this update.
Summary of changes:
.../core/auth/AuthenticatedPolarisPrincipal.java | 9 +-
.../core/config/ProductionReadinessCheck.java | 4 +
quarkus/defaults/build.gradle.kts | 1 +
.../src/main/resources/application.properties | 41 +++++
quarkus/service/build.gradle.kts | 1 +
.../service/quarkus/auth/ActiveRolesAugmentor.java | 30 +++-
.../quarkus/auth/AuthenticatingAugmentor.java | 87 ++++++++++
.../quarkus/auth/PolarisIdentityProvider.java | 80 ---------
.../auth/QuarkusAuthenticationConfiguration.java | 45 ++----
...> QuarkusAuthenticationRealmConfiguration.java} | 23 ++-
.../quarkus/auth/QuarkusPrincipalAuthInfo.java | 14 +-
.../quarkus/auth/external/OidcConfiguration.java | 52 ++++++
.../auth/external/OidcTenantConfiguration.java | 121 ++++++++++++++
.../external/OidcTenantResolvingAugmentor.java | 74 +++++++++
.../auth/external/PrincipalAuthInfoAugmentor.java | 103 ++++++++++++
.../auth/external/mapping/ClaimsLocator.java | 148 +++++++++++++++++
.../external/mapping/DefaultPrincipalMapper.java | 68 ++++++++
.../mapping/DefaultPrincipalRolesMapper.java | 32 ++--
.../auth/external/mapping/PrincipalMapper.java | 53 ++++++
.../external/mapping/PrincipalRolesMapper.java | 45 ++++++
.../external/tenant/DefaultOidcTenantResolver.java | 67 ++++++++
.../auth/external/tenant/OidcTenantResolver.java | 16 +-
.../InternalAuthenticationMechanism.java} | 85 +++++++++-
.../auth/internal/InternalIdentityProvider.java | 61 +++++++
.../quarkus/config/ProductionReadinessChecks.java | 100 +++++++-----
.../service/quarkus/config/QuarkusProducers.java | 55 +++++--
.../quarkus/auth/ActiveRolesAugmentorTest.java | 117 ++++++++++++++
.../quarkus/auth/AuthenticatingAugmentorTest.java | 142 ++++++++++++++++
.../polaris/service/quarkus/auth/TokenUtils.java | 2 +-
.../external/OidcTenantResolvingAugmentorTest.java | 96 +++++++++++
.../external/PrincipalAuthInfoAugmentorTest.java | 129 +++++++++++++++
.../auth/external/mapping/ClaimsLocatorTest.java | 179 +++++++++++++++++++++
.../mapping/DefaultPrincipalMapperTest.java | 87 ++++++++++
.../mapping/DefaultPrincipalRolesMapperTest.java | 81 ++++++++++
.../tenant/DefaultOidcTenantResolverTest.java | 133 +++++++++++++++
.../InternalAuthenticationMechanismTest.java | 173 ++++++++++++++++++++
.../internal/InternalIdentityProviderTest.java | 88 ++++++++++
.../it/QuarkusApplicationIntegrationTest.java | 7 -
.../quarkus/ratelimiter/RateLimiterFilterTest.java | 6 +-
.../service}/src/test/resources/logback-test.xml | 4 +-
.../service/auth/AuthenticationConfiguration.java | 62 ++-----
....java => AuthenticationRealmConfiguration.java} | 18 ++-
...eRolesProvider.java => AuthenticationType.java} | 26 +--
.../apache/polaris/service/auth/Authenticator.java | 23 ++-
.../apache/polaris/service/auth/DecodedToken.java | 25 ++-
.../service/auth/DefaultActiveRolesProvider.java | 4 +-
...uthenticator.java => DefaultAuthenticator.java} | 95 +++++------
.../service/auth/DefaultOAuth2ApiService.java | 7 +-
.../service/auth/DefaultPolarisAuthenticator.java | 54 -------
.../DisabledOAuth2ApiService.java} | 13 +-
.../org/apache/polaris/service/auth/JWTBroker.java | 5 +-
.../polaris/service/auth/JWTRSAKeyPairFactory.java | 31 ++--
.../service/auth/JWTSymmetricKeyFactory.java | 31 ++--
...erFactoryConfig.java => PrincipalAuthInfo.java} | 23 ++-
...atorTest.java => DefaultAuthenticatorTest.java} | 23 +--
.../service/auth/DefaultOAuth2ApiServiceTest.java | 28 +---
56 files changed, 2650 insertions(+), 477 deletions(-)
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/AuthenticatingAugmentor.java
delete mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/PolarisIdentityProvider.java
copy
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/{QuarkusAuthenticationConfiguration.java
=> QuarkusAuthenticationRealmConfiguration.java} (74%)
copy
integration-tests/src/main/java/org/apache/polaris/service/it/env/ClientCredentials.java
=>
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/QuarkusPrincipalAuthInfo.java
(60%)
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/OidcConfiguration.java
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/OidcTenantConfiguration.java
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/OidcTenantResolvingAugmentor.java
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/PrincipalAuthInfoAugmentor.java
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/mapping/ClaimsLocator.java
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/mapping/DefaultPrincipalMapper.java
copy
service/common/src/main/java/org/apache/polaris/service/secrets/UnsafeInMemorySecretsManagerFactory.java
=>
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/mapping/DefaultPrincipalRolesMapper.java
(50%)
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/mapping/PrincipalMapper.java
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/mapping/PrincipalRolesMapper.java
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/tenant/DefaultOidcTenantResolver.java
copy
polaris-core/src/main/java/org/apache/polaris/core/policy/exceptions/NoSuchPolicyException.java
=>
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/external/tenant/OidcTenantResolver.java
(67%)
rename
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/{PolarisAuthenticationMechanism.java
=> internal/InternalAuthenticationMechanism.java} (53%)
create mode 100644
quarkus/service/src/main/java/org/apache/polaris/service/quarkus/auth/internal/InternalIdentityProvider.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/ActiveRolesAugmentorTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/AuthenticatingAugmentorTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/external/OidcTenantResolvingAugmentorTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/external/PrincipalAuthInfoAugmentorTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/external/mapping/ClaimsLocatorTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/external/mapping/DefaultPrincipalMapperTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/external/mapping/DefaultPrincipalRolesMapperTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/external/tenant/DefaultOidcTenantResolverTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/internal/InternalAuthenticationMechanismTest.java
create mode 100644
quarkus/service/src/test/java/org/apache/polaris/service/quarkus/auth/internal/InternalIdentityProviderTest.java
copy {tools/misc-types => quarkus/service}/src/test/resources/logback-test.xml
(94%)
copy
service/common/src/main/java/org/apache/polaris/service/auth/{AuthenticationConfiguration.java
=> AuthenticationRealmConfiguration.java} (77%)
copy
service/common/src/main/java/org/apache/polaris/service/auth/{ActiveRolesProvider.java
=> AuthenticationType.java} (60%)
rename
service/common/src/main/java/org/apache/polaris/service/auth/{BasePolarisAuthenticator.java
=> DefaultAuthenticator.java} (51%)
delete mode 100644
service/common/src/main/java/org/apache/polaris/service/auth/DefaultPolarisAuthenticator.java
copy
service/common/src/main/java/org/apache/polaris/service/{ratelimiter/NoOpRateLimiter.java
=> auth/DisabledOAuth2ApiService.java} (79%)
copy
service/common/src/main/java/org/apache/polaris/service/auth/{TokenBrokerFactoryConfig.java
=> PrincipalAuthInfo.java} (54%)
rename
service/common/src/test/java/org/apache/polaris/service/auth/{BasePolarisAuthenticatorTest.java
=> DefaultAuthenticatorTest.java} (82%)
