Merge pull request #39 from solace-iot-team/feat-ac-token

Feat ac token

Author: ricardojosegomezulmke

ReleaseNotes.md

@@ -2,6 +2,26 @@
 
 Solace Async API Management.
 
+## Version 0.3.1
+  * [API-M Admin & Developer Portal](https://github.com/solace-iot-team/async-apim/tree/main/apim-portal): 0.3.1
+  * [API-M Server OpenAPI](https://github.com/solace-iot-team/async-apim/blob/main/apim-server/server/common/api.yml): 0.3.1
+  * [API-M Server](https://github.com/solace-iot-team/async-apim/tree/main/apim-server): 0.3.1
+  * [API-M Connector OpenAPI](https://github.com/solace-iot-team/platform-api): 0.7.19
+
+**Enhancements:**
+  * **API Products**
+    - enabled editing `queue granularity` to Guaranteed Messaging Options - Connector re-provisions apps on changing setting
+
+**APIM Server:**
+- **Internal IDP**
+  - APIM server functions as an internal IDP (bearer token + refresh token)
+  - APIM Server proxy to Connector API with bearer token
+  - removed connector username + password from config & bootstrap files
+
+**Quickstart:**
+- **Mongo DB**
+  - changed quickstart docker compose to use only 1 mongo db for apim server & connector
+
 ## Version 0.3.0
   * [API-M Admin & Developer Portal](https://github.com/solace-iot-team/async-apim/tree/main/apim-portal): 0.3.0
   * [API-M Server OpenAPI](https://github.com/solace-iot-team/async-apim/blob/main/apim-server/server/common/api.yml): 0.3.0

apim-portal/devel/README.md

@@ -1,18 +1,5 @@
 # APIM Portal Development
 
-## Standup APIM Connector System
-
-````bash
-apim-connector-system/start.system.sh
-````
-- Check the [docker.compose.yml](./docker.compose.yml) for ports / credentials, etc.
-- [Connector username/password](./apim-connector-system/docker-volumes/apim-connector/organization_users.json).
-
-Stop:
-````bash
-apim-connector-system/stop.system.sh
-````
-
 ## Start Devel Portal
 ````bash
 npm install

apim-portal/devel/apim-connector-system/docker.compose.yml

@@ -1,6 +1,6 @@
 {
   "name": "async-apim-portal",
-  "version": "0.3.0",
+  "version": "0.3.1",
   "description": "Solace Async API Management Portal",
   "repository": {
     "type": "git",

apim-portal/package.json

@@ -6,7 +6,6 @@ import { Dropdown } from "primereact/dropdown";
 import { InputText } from 'primereact/inputtext';
 import { InputTextarea } from 'primereact/inputtextarea';
 import { InputNumber } from "primereact/inputnumber";
-import { Password } from "primereact/password";
 import { Button } from 'primereact/button';
 import { Toolbar } from 'primereact/toolbar';
 import { classNames } from 'primereact/utils';
@@ -95,8 +94,8 @@ export const EditNewConnector: React.FC<IEditNewConnectorProps> = (props: IEditN
     connectorClientConfig: {
       locationConfig: emptyLocationConfigInternalProxy,
       apiVersion: 'v1',
-      serviceUser: '',
-      serviceUserPwd: ''
+      // serviceUser: 'unused-service-user',
+      // serviceUserPwd: 'unused-service-user-pwd'
     }    
   };
 
@@ -276,8 +275,8 @@ export const EditNewConnector: React.FC<IEditNewConnectorProps> = (props: IEditN
     managedObjectUseForm.setValue('managedObject.description', mofd.managedObject.description);
 
     managedObjectUseForm.setValue('managedObject.connectorClientConfig.apiVersion', mofd.managedObject.connectorClientConfig.apiVersion);
-    managedObjectUseForm.setValue('managedObject.connectorClientConfig.serviceUser', mofd.managedObject.connectorClientConfig.serviceUser);
-    managedObjectUseForm.setValue('managedObject.connectorClientConfig.serviceUserPwd', mofd.managedObject.connectorClientConfig.serviceUserPwd);
+    // managedObjectUseForm.setValue('managedObject.connectorClientConfig.serviceUser', mofd.managedObject.connectorClientConfig.serviceUser);
+    // managedObjectUseForm.setValue('managedObject.connectorClientConfig.serviceUserPwd', mofd.managedObject.connectorClientConfig.serviceUserPwd);
 
     managedObjectUseForm.setValue('selectedLocationConfigTypeId', mofd.selectedLocationConfigTypeId);
     managedObjectUseForm.setValue('locationConfigExternal', mofd.locationConfigExternal);
@@ -488,7 +487,7 @@ export const EditNewConnector: React.FC<IEditNewConnectorProps> = (props: IEditN
               {displayManagedObjectFormFieldErrorMessage(managedObjectUseForm.formState.errors.managedObject?.description)}
             </div>
             {/* serviceUser */}
-            <div className="p-field">
+            {/* <div className="p-field">
               <span className="p-float-label">
                 <Controller
                   name="managedObject.connectorClientConfig.serviceUser"
@@ -511,9 +510,9 @@ export const EditNewConnector: React.FC<IEditNewConnectorProps> = (props: IEditN
                 <label htmlFor="managedObject.connectorClientConfig.serviceUser" className={classNames({ 'p-error': managedObjectUseForm.formState.errors.managedObject?.connectorClientConfig?.serviceUser })}>Service User*</label>
               </span>
               {displayManagedObjectFormFieldErrorMessage(managedObjectUseForm.formState.errors.managedObject?.connectorClientConfig?.serviceUser)}
-            </div>
+            </div> */}
             {/* serviceUserPwd */}
-            <div className="p-field">
+            {/* <div className="p-field">
               <span className="p-float-label">
                 <Controller
                   name="managedObject.connectorClientConfig.serviceUserPwd"
@@ -539,7 +538,7 @@ export const EditNewConnector: React.FC<IEditNewConnectorProps> = (props: IEditN
                 <label htmlFor="managedObject.connectorClientConfig.serviceUserPwd" className={classNames({ 'p-error': managedObjectUseForm.formState.errors.managedObject?.connectorClientConfig?.serviceUserPwd })}>Service User Password*</label>
               </span>
               {displayManagedObjectFormFieldErrorMessage(managedObjectUseForm.formState.errors.managedObject?.connectorClientConfig?.serviceUserPwd)}
-            </div>
+            </div> */}
 
             {/* config Type */}
             <div className="p-field">

apim-portal/src/admin-portal/components/ManageConnectors/EditNewConnector.tsx

@@ -193,8 +193,8 @@ export const ListConnectors: React.FC<IListConnectorsProps> = (props: IListConne
             autoLayout={true}
           >
             <Column header="URL" headerStyle={{ width: '35%' }} field="composedConnectorUrl"  />
-            <Column header="Service User" field="apsConnector.connectorClientConfig.serviceUser" />
-            <Column header="Service User Password" field="apsConnector.connectorClientConfig.serviceUserPwd" />
+            {/* <Column header="Service User" field="apsConnector.connectorClientConfig.serviceUser" />
+            <Column header="Service User Password" field="apsConnector.connectorClientConfig.serviceUserPwd" /> */}
           </DataTable>
         </div>
       );

apim-portal/src/admin-portal/components/ManageConnectors/ListConnectors.tsx

@@ -135,8 +135,8 @@ export const ViewConnector: React.FC<IViewConnectorProps> = (props: IViewConnect
         <div className="p-ml-4">
           <div><b>Type</b>: {mo.apsConnector.connectorClientConfig.locationConfig.configType}</div>
           <div><b>Url</b>: {mo.composedConnectorUrl}</div>
-          <div><b>Service User</b>: {mo.apsConnector.connectorClientConfig.serviceUser}</div>
-          <div><b>Service Pwd </b>: {mo.apsConnector.connectorClientConfig.serviceUserPwd}</div>
+          {/* <div><b>Service User</b>: {mo.apsConnector.connectorClientConfig.serviceUser}</div> */}
+          {/* <div><b>Service Pwd </b>: {mo.apsConnector.connectorClientConfig.serviceUserPwd}</div> */}
         </div>
       </React.Fragment>
     );

apim-portal/src/admin-portal/components/ManageConnectors/ViewConnector.tsx

@@ -51,74 +51,10 @@ export class APClientConnectorOpenApi {
     return base;
   }
 
-  public static deleteme_initialize = (config: APSConnectorClientConfig) => {
-    // const funcName: string = `initialize`;
-    // const logName: string = `${APClientConnectorOpenApi.componentName}.${funcName}()`  
-    APClientConnectorOpenApi.config = (JSON.parse(JSON.stringify(config)));
-    OpenAPI.BASE = APClientConnectorOpenApi.constructOpenApiBase(APClientConnectorOpenApi.config);
-    OpenAPI.USERNAME = APClientConnectorOpenApi.config.serviceUser;
-    OpenAPI.PASSWORD = APClientConnectorOpenApi.config.serviceUserPwd;
-    APClientConnectorOpenApi.isInitialized = true;
-    // console.log(`${logName}: OpenAPI = ${JSON.stringify(OpenAPI, null, 2)}`);
-  } 
-
   public static uninitialize = () => {
     APClientConnectorOpenApi.isInitialized = false;
   }
 
-  // ************ PROXY *******************
-  // public static tmpInitializeAsProxy = async () => {
-  //   const funcName: string = `tmpInitializeAsProxy`;
-  //   const logName: string = `${APClientConnectorOpenApi.componentName}.${funcName}()`  
-  //   // APClientConnectorOpenApi.mutexReleaser = await APClientConnectorOpenApi.mutex.acquire();
-  //   if(APClientConnectorOpenApi.isInitialized) {
-  //     APClientConnectorOpenApi.orgSettings = {
-  //       config: JSON.parse(JSON.stringify(APClientConnectorOpenApi.config)),
-  //       isInitialized: true
-  //     }
-  //   }
-  //   const url: string = APSOpenAPI.BASE + '/connectorProxy';
-  //   OpenAPI.BASE = `${url}/${APClientConnectorOpenApi.config.apiVersion}`;
-  //   OpenAPI.USERNAME = undefined;
-  //   OpenAPI.PASSWORD = undefined;
-  //   OpenAPI.WITH_CREDENTIALS = true;
-  //   // OpenAPI.CREDENTIALS = "include";
-  //   OpenAPI.TOKEN = async() => { return APSClientOpenApi.getToken(); }
-  //   console.log(`${logName}: ConnectorOpenAPI=${JSON.stringify(OpenAPI, null, 2)}`);
-  // }
-  // public static tmpUninitializeAsProxy = async () => {
-  //   if(APClientConnectorOpenApi.orgSettings) {
-  //     APClientConnectorOpenApi.initialize(APClientConnectorOpenApi.orgSettings.config);
-  //   } else {
-  //     APClientConnectorOpenApi.uninitialize();
-  //   }
-  //   APClientConnectorOpenApi.mutexReleaser();
-  // }
-  // ************ PROXY *******************
-
-  public static deleteme_tmpInitialize = async (tmpConfig: APSConnectorClientConfig) => {
-    // const funcName: string = `tmpInitialize`;
-    // const logName: string = `${APClientConnectorOpenApi.componentName}.${funcName}()`  
-    // APClientConnectorOpenApi.mutexReleaser = await APClientConnectorOpenApi.mutex.acquire();
-    // if(APClientConnectorOpenApi.isInitialized) {
-    //   APClientConnectorOpenApi.orgSettings = {
-    //     config: JSON.parse(JSON.stringify(APClientConnectorOpenApi.config)),
-    //     isInitialized: true
-    //   }
-    // }
-    // APClientConnectorOpenApi.initialize(tmpConfig);
-    // console.log(`${logName}: OpenAPI=${JSON.stringify(OpenAPI, null, 2)}`);
-  }
-
-  public static deleteme_tmpUninitialize = async () => {
-    // if(APClientConnectorOpenApi.orgSettings) {
-    //   APClientConnectorOpenApi.initialize(APClientConnectorOpenApi.orgSettings.config);
-    // } else {
-    //   APClientConnectorOpenApi.uninitialize();
-    // }
-    // APClientConnectorOpenApi.mutexReleaser();
-  }
-
   public static getOpenApiInfo = (): APConnectorClientOpenApiInfo => {
     return {
       base: OpenAPI.BASE,

apim-portal/src/utils/APClientConnectorOpenApi.ts

@@ -1,3 +1,4 @@
+APIM_SERVER_APP_ID=devel-apim-server
 APIM_SERVER_PORT=3003
 APIM_SERVER_MONGO_CONNECTION_STRING=mongodb://localhost:27019/?retryWrites=true&w=majority
 
@@ -9,7 +10,6 @@ APIM_SERVER_MONGO_CONNECTION_STRING=mongodb://localhost:27019/?retryWrites=true&
 APIM_SERVER_MONGO_DB=solace-apim-server
 APIM_SERVER_OPENAPI_ENABLE_RESPONSE_VALIDATION=true
 # APIM_SERVER_OPENAPI_ENABLE_RESPONSE_VALIDATION=false
-APIM_SERVER_LOGGER_APP_ID=devel-apim-server
 # level: 'fatal', 'error', 'warn', 'info', 'debug', 'trace' or 'silent'
 APIM_SERVER_LOGGER_LOG_LEVEL=debug
 #APIM_SERVER_LOGGER_LOG_LEVEL=info
@@ -33,6 +33,11 @@ APIM_SERVER_AUTH_INTERNAL_REFRESH_JWT_SECRET=myRefreshJwtSecret
 # 30 days = 60 * 60 * 24 * 30 = 2592000 seconds
 # 5 days = 60 * 60 * 24 * 5 = 432000 seconds
 APIM_SERVER_AUTH_INTERNAL_REFRESH_JWT_EXPIRY_SECS=432000
+# token auth for connector
+APIM_SERVER_CONNECTOR_AUTH_ISSUER=apim-server
+APIM_SERVER_CONNECTOR_AUTH_AUDIENCE=platform-api-server
+APIM_SERVER_CONNECTOR_AUTH_SECRET=myConnectorAuthJwtSecret
+
 #future
 # APIM_SERVER_AUTH_WHITELISTED_DOMAINS=http://localhost:3000
 # oidc auth

apim-server/.env

@@ -1,7 +1,7 @@
 [
   {
-    "connectorId": "localDevelApimConnector",
-    "displayName": "Local Devel Connector",
+    "connectorId": "localDevelApimConnectorDocker",
+    "displayName": "Local Devel Connector Docker",
     "description": "uses docker/release",
     "isActive": true,
     "connectorClientConfig": {
@@ -11,9 +11,7 @@
         "host": "localhost",
         "port": 9095
       },
-      "apiVersion": "v1",
-      "serviceUser": "apim-portal-service-admin",
-      "serviceUserPwd": "Solace123!"
+      "apiVersion": "v1"
     }
   }
 ]