Skip to content

feat: add oauth2 authentication to apis using keycloak api key #326

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 22 commits into
base: main
Choose a base branch
from
Draft

feat: add oauth2 authentication to apis using keycloak api key #326

wants to merge 22 commits into from

Conversation

CDiezRodriguez
Copy link
Contributor

WHAT

This pull request introduces Keycloak integration for authentication into the Industry Core Hub Helm chart and backend.

WHY

These changes collectively enable secure authentication via Keycloak

FURTHER NOTES

Depends on #324

Closes #254

@CDiezRodriguez
feat: add Keycloak dependency and configuration to Helm chart
4aae56a
@CDiezRodriguez
Merge branch 'main' into feat/add-keycloak-instance-to-helm-chart
81807b7
@CDiezRodriguez
Merge remote-tracking branch 'upstream/main' into feat/add-keycloak-i…
d404f29 
…nstance-to-helm-chart
@CDiezRodriguez
feat: Enhance Keycloak integration by updating Chart.yaml, adding use…
cab8044 
…r creation scripts in configmap-backend-postgres-init.yaml, and modifying values.yaml for database configuration and secrets management.
@CDiezRodriguez
chore: Bump chart version to 0.2.6 in Chart.yaml
34e81f6
@CDiezRodriguez
feat: Add full index repository for Bitnami charts in helm-test workflow
4c3fc96
@CDiezRodriguez
chore: reverse discovery oauth changes
93dde44
@CDiezRodriguez
feat: Add ExtendedOAuth2Manager class for enhanced OAuth2 functionality
debeaf4
@CDiezRodriguez
feat: Integrate Keycloak authentication by adding auth_keycloak.py an…
50733bc 
…d updating configuration.yml
@CDiezRodriguez
feat: Add authentication router for Keycloak integration
6bfd312
@CDiezRodriguez
feat: Add Keycloak realm import configuration and related resources
b58f32b
@CDiezRodriguez
feat: Update backend configuration to support Keycloak authorization
649f346
github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 22, 2025
View reviewed changes
charts/industry-core-hub/templates/job-realm-import.yaml
app.kubernetes.io/component: keycloak-import
spec:
restartPolicy: OnFailure
containers:

Check warning

Code scanning / SonarCloud

Service account permissions should be restricted Medium

Bind this resource's automounted service account to RBAC or disable automounting. See more on SonarQube Cloud
charts/industry-core-hub/templates/job-realm-import.yaml
spec:
restartPolicy: OnFailure
containers:
- name: realm-import

Check warning

Code scanning / SonarCloud

Memory limits should be enforced Medium

Specify a memory limit for this container. See more on SonarQube Cloud
@matbmoser
Copy link
Contributor

matbmoser commented Sep 23, 2025
edited
Loading

image

Have fallback to api key.

@CDiezRodriguez
feat: Add API key configuration for backend authorization
67c0735
@CDiezRodriguez
fix: Correct apiKey field name from 'values' to 'value' in configurat…
aaac049 
…ion files
@CDiezRodriguez
feat: Implement authentication management with Keycloak and API key s…
48e8008 
…upport
@CDiezRodriguez
fix: Correct api_key field name to apiKey in backend configuration
7c4b871
@CDiezRodriguez
feat: Add client configuration for Industry Core Hub API in realm-exp…
0c9cdfe 
…ort.json
@CDiezRodriguez
feat: Add client_secret configuration for Keycloak in backend settings
e1e9ccf
@CDiezRodriguez
fix: Update import statements for authentication management in FastAP…
4d87ff9 
…I app
@CDiezRodriguez
Merge remote-tracking branch 'upstream/main' into feat/add-keycloak-i…
c49a4b9 
…nstance-to-helm-chart
@CDiezRodriguez
Merge remote-tracking branch 'upstream/feat/add-keycloak-instance-to-…
1e1aac6 
…helm-chart' into feat/add-oauth2-authentication-to-apis-using-keycloak-api_key
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Failed Quality Gate failed

Failed conditions
1 Security Hotspot
C Security Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Add oauth2 authentication to apis using Keycloak. + api_key
2 participants
@CDiezRodriguez @matbmoser