Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: Add optional EndUserId param to ServiceOwner Get Dialog details API #1020

Merged
merged 4 commits into from
Aug 21, 2024
Merged

feat: Add optional EndUserId param to ServiceOwner Get Dialog details API #1020

merged 4 commits into from
Aug 21, 2024

Conversation

knuhau
Copy link
Collaborator

@knuhau knuhau commented Aug 16, 2024
edited
Loading

Description

Add optional EndUserId param to ServiceOwner Get Dialog details API

Related Issue(s)

Verification

  • Your code builds clean without any errors or warnings
  • Manual testing done (required)
  • Relevant automated test added (if you find this hard, leave it and we'll help out)

Documentation

  • Documentation is updated (either in docs-directory, Altinnpedia or a separate linked PR in altinn-studio-docs., if applicable)

@knuhau
Copy link
Collaborator Author

knuhau commented Aug 17, 2024

Opprinnelig ønsket implementasjon av innslag i SeenLog i følge issue #386:

Gjøre innslag i seen-liste som dekoreres med at det er utført av tjenesteeiers orgnr samt clientid fra token

Denne specen ble vel lagt inn mens SeenLog fremdeles var en string, så det lar seg vel neppe gjøres slik lenger.

Slik det er implementert nå blir innslag i Seenlog seende ut som følger, der Actor inneholder sluttbrukerens detaljer, mens EndUserType blir ServiceOwnerOnBehalfOfPerson og IsViaServiceOwner = true. Usikker på om det blir som ønsket:

SCR-20240817-oweb SCR-20240817-pakl

@knuhau knuhau marked this pull request as ready for review August 19, 2024 06:40
@knuhau knuhau requested a review from a team as a code owner August 19, 2024 06:40
MagnusSandgren
MagnusSandgren reviewed Aug 19, 2024
View reviewed changes
Copy link
Collaborator

@MagnusSandgren MagnusSandgren left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ta kontakt om det er noe spørsmål om reviewen :)

...n.Dialogporten.Application/Externals/AltinnAuthorization/DialogDetailsAuthorizationResult.cs Outdated Show resolved Hide resolved
...r.Domain.Dialogporten.WebApi/Common/Authentication/ServiceOwnerOnBehalfOfPersonMiddleware.cs Outdated Show resolved Hide resolved
...ten.WebApi/Endpoints/V1/ServiceOwner/DialogActivities/Create/CreateDialogActivityEndpoint.cs Outdated Show resolved Hide resolved
...Api/Endpoints/V1/ServiceOwner/DialogTransmissions/Create/CreateDialogTransmissionEndpoint.cs Outdated Show resolved Hide resolved
...r.Domain.Dialogporten.WebApi/Common/Authentication/ServiceOwnerOnBehalfOfPersonMiddleware.cs Outdated Show resolved Hide resolved
...main.Dialogporten.Application/Features/V1/ServiceOwner/Dialogs/Queries/Get/GetDialogQuery.cs Outdated Show resolved Hide resolved
...ogporten.Application/Features/V1/ServiceOwner/Dialogs/Queries/Get/GetDialogQueryValidator.cs Outdated Show resolved Hide resolved
...main.Dialogporten.Infrastructure/Altinn/Authorization/LocalDevelopmentAltinnAuthorization.cs Outdated Show resolved Hide resolved
...main.Dialogporten.Infrastructure/Altinn/Authorization/LocalDevelopmentAltinnAuthorization.cs Show resolved Hide resolved
@MagnusSandgren
Copy link
Collaborator

Burde vi ta vare på hvilken service owner som jobber på vegne av brukeren når ServiceOwnerOnBehalfOfPerson er valgt, eller er det alltid implisitt at det er tjenesteeieren som eier dialogen? @elsand

@elsand
Copy link
Member

elsand commented Aug 19, 2024

Burde vi ta vare på hvilken service owner som jobber på vegne av brukeren når ServiceOwnerOnBehalfOfPerson er valgt, eller er det alltid implisitt at det er tjenesteeieren som eier dialogen? @elsand

I første omgang ja.

Men det vil kunne bli scenarioer hvor det er andre aktører (orgnr) som har integrert med Dialogporten på vegne av tjenesteeieren, og "impersonater" tjenesteeieren gjennom en delegering av serviceprovider-scopet. I de tilfellene har Maskinporten-tokenet et ekstra claim, "supplier_org", som inneholder den autentiserte parten (mens "consumer_org" alltid vil være tjenesteeieren). Så for full paranoia kunne vi ha logget consumer_org, supplier_org og client_id (sistnevnte for å kunne ha sporbarhet ifm #40, som gjør det interessant å kunne skille på systemer innad hos en tjenesteeier), da vil vi ha god informasjon om hvem som faktisk gjorde en ServiceOwnerOnBehalfOfPerson.

Tenker vi kan avvente med dette inntil videre. Uansett ikke informasjon som vi vil komme til å eksponere i DTO-ene, så det kan vi innføre når som helst i fremtiden.

@knuhau knuhau force-pushed the feat/add-pid-to-so-detail-api branch from 90ec9aa to eff39af Compare August 20, 2024 15:51
@knuhau knuhau force-pushed the feat/add-pid-to-so-detail-api branch from eff39af to d331fbc Compare August 20, 2024 15:57
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Failed Quality Gate failed

Failed conditions
15.9% Duplication on New Code (required ≤ 3%)

See analysis details on SonarCloud

@knuhau knuhau merged commit 1380b33 into main Aug 21, 2024
17 of 18 checks passed
@knuhau knuhau deleted the feat/add-pid-to-so-detail-api branch August 21, 2024 11:55
@dialogporten-bot dialogporten-bot mentioned this pull request Aug 21, 2024
Merged
arealmaas pushed a commit that referenced this pull request Aug 21, 2024
@dialogporten-bot
chore(main): release 1.15.0 (#1026)
224a42f 
🤖 I have created a release *beep* *boop*
---


##
[1.15.0](v1.14.0...v1.15.0)
(2024-08-21)


### Features

* add support for serviceowner admin scope
([#1002](#1002))
([2638b48](2638b48))
* **web-api:** Add optional EndUserId param to ServiceOwner Get Dialog
details API
([#1020](#1020))
([1380b33](1380b33))


### Bug Fixes

* **azure:** use correct ip for APIM in prod
([#1036](#1036))
([fecc4c0](fecc4c0))

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MagnusSandgren MagnusSandgren MagnusSandgren approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@knuhau @MagnusSandgren @elsand