Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Highest
Fix Version/s: New Delhi Release
Affects Version/s: New Delhi Release
Component/s: NCMP
Labels:
None

Epic Link:
NCMP/CPS Audit Trail

Problem: CPS/NCMP requires HTTP Basic Auth only. This prevents HTTP Bearer Token from passed in, which in turn can affect audit logging in user's environment, as the Bearer Token contains user auth info, which is discarded.

Allow NCMP (cps-application) to accept HTTP Bearer Token
- Disabling HTTP Basic Auth is an option
Propagate Authorization header from NCMP passthrough operations to DMI
~~May need to come up with solution for CM handle registration / Module Sync (need confirmation if this is required)~~
Testing:
- Manual testing with Postman to confirm Bear Token is passed from NCMP to DMI is good
- Automated integration can be done after release, to prevent regressions

mentioned in: Page Loading...

1.	Allow cps-application to accept HTTP Bearer Token (by disabling Spring Security)	Closed	Daniel Hanrahan
2.	Propagate HTTP Authorization Header from NCMP passthrough to DMI	Closed	Priyank Maheshwari
3.	Pass HTTP Authorization Header to DMI during Registration / Module Sync	Closed	Unassigned
4.	Update OpenAPI to remove 401 Unauthorized	Closed	Priyank Maheshwari
5.	Manually test that Auth Bearer Token is passed from NCMP to DMI	Closed	Daniel Hanrahan
6.	Log all incoming HTTP requests to NCMP with Authorization Header in DMI stub	Closed	Sourabh Sourabh
7.	Update unit tests to verify Bearer Token is passed to DMI	Closed	Sourabh Sourabh
8.	Add integration tests to verify Bearer Token is passed to DMI	Closed	Daniel Hanrahan

Assignee:: Daniel Hanrahan

Reporter:: Daniel Hanrahan

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 28/Feb/24 6:37 AM

Updated:: 11/Mar/24 10:09 PM

Resolved:: 06/Mar/24 4:46 PM

Details

Description

Attachments

Issue Links

Sub-Tasks

Activity

People

Dates