Comments (13)
@maxceem I guess you already found out the secret is mysecret
. It can be found at config/default.js
, assigned to the AUTH_SECRET
parameter.
from taas-apis.
@imcaizheng you may pick it up if you are interested.
from taas-apis.
There is a minor issue, when GET /taas-teams/:id with m2m token, it would fail with the following message:
[2020-12-04T13:17:33.868Z] TeamService getTeam ERROR : cannot GET /v5/projects/111 (403)
Beside that, other endpoints work well with m2m access. Will look into that issue later.
from taas-apis.
Thanks, @imcaizheng.
I think project service returns an error because it requires M2M token to have proper scopes all:projects
or read:projects
. And for other Project API endpoints, you may check required scopes here https://htmlpreview.github.io/?https://github.com/topcoder-platform/tc-project-service/blob/develop/docs/permissions.html.
from taas-apis.
@maxceem
I tried to capture the token generated from helper.getM2Mtoken()
https://github.com/topcoder-platform/taas-apis/blob/feature/integration-test-fix/src/common/helper.js#L206
but I cannot find read:projects
or all:projects
inside the payload of the token. Here is the payload:
{
"iss": "https://topcoder-dev.auth0.com/",
"sub": "LEyCiuOrHc7UAFoY0EAAhMulWSX7SrQ5@clients",
"aud": "https://u-bahn.topcoder.com",
"iat": 1607058602,
"exp": 1607145002,
"azp": "LEyCiuOrHc7UAFoY0EAAhMulWSX7SrQ5",
"scope": "read:user all:user create:user update:user delete:user all:achievement create:achievement update:achievement read:achievement delete:achievement read:achievementsProvider all:achievementsProvider update:achievementsProvider delete:achievementsProvider read:attribute all:attribute update:attribute delete:attribute read:attributeGroup all:attributeGroup create:attributeGroup update:attributeGroup delete:attributeGroup read:externalProfile all:externalProfile create:externalProfile delete:externalProfile read:organization all:organization create:organization delete:organization read:role all:role create:role update:role delete:role read:skill all:skill create:skill update:skill delete:skill read:skillsProvider all:skillsProvider create:skillsProvider update:skillsProvider delete:skillsProvider read:userAttribute all:userAttribute create:userAttribute update:userAttribute delete:userAttribute read:usersRole all:usersRole create:usersRole update:usersRole delete:usersRole read:usersSkill all:usersSkill create:usersSkill update:usersSkill delete:usersSkill read:group all:group update:group create:group delete:group update:externalProfile update:organization create:achievementsProvider create:upload update:upload all:upload create:template read:upload read:template all:template update:template delete:upload delete:template create:attribute",
"gty": "client-credentials"
}
Do you have any idea how to configure AUTH0 related parameters to get tokens that can access /v5/projects?
from taas-apis.
Thanks for the details @imcaizheng. I would check If we have any good way of testing it.
To configure AUTH0 token we would need to ask the Topcoder infrastructure team, so this may take some time.
from taas-apis.
Contest https://www.topcoder.com/challenges/30156200 has been created for this ticket.This is an automated message for maxceem via Topcoder X
from taas-apis.
Contest https://www.topcoder.com/challenges/30156200 has been updated - it has been assigned to aaron2017.This is an automated message for maxceem via Topcoder X
from taas-apis.
@imcaizheng could you, please, let me know what secret did you use to sign the tokens in Postman file?
from taas-apis.
Works great for me locally.
Would merge it as soon as merge conflicts are resulted.
Issue with getting the team by id should be resolved when we add scope read:projects
to the Auth0 config which we use in TaaS API on DEV so this method https://github.com/topcoder-platform/taas-apis/blob/feature/integration-test-fix/src/common/helper.js#L198-L200 returns a token which is allowed to call Projects API GET /projects/:id for any project.
from taas-apis.
@nkumar-topcoder I've resolved conflicts and merged to DEV for testing.
from taas-apis.
It has been tested e2e, and Connect App (using Projects API) creates Jobs in TaaS API using M2M token and it works great.
Thanks, @imcaizheng.
from taas-apis.
Payment task has been updated: https://software.topcoder.com/review/actions/ViewProjectDetails?pid=30156200This is an automated message for maxceem via Topcoder X
from taas-apis.
Related Issues (20)
- [$100] Some notifications are not received HOT 33
- [$50] Replace webhook which listens to created events HOT 4
- Interview Improvements - Summary
- [$75] Fix updating interview method on webhooks HOT 14
- [$75] Use `metadata` to identify Nylas update events instead of parsing `description` HOT 2
- Issue when connecting Google/Microsoft calendar and then removing it HOT 12
- Interview scheduled email is not sent
- [$50] Add authentication for a new Nylas Page webhook. HOT 5
- [$80] Send interview "canceled" and interview "rescheduled" email notifications HOT 12
- [$30] Use existent env variable during DB migration HOT 5
- Some interviews are stuck in scheduling, therefore unable to cancel/reschedule them HOT 3
- Attendees are not listed in the Interview reminder(customer), Interview complete(customer) and Reminder: Take action to reserve your talent(customer) emails HOT 2
- [$40] The meeting link sent to the JC in the 'Reminder: Interview coming up' email says 'You do not have permissions to perform this action' HOT 14
- Add a new `Did not Post` rcrmStatus to the taas-api HOT 1
- Migration Open Jobs which are only present on Gigs Listing MFE
- The email notification 'before 1 hour of interview time' and the 'Post Interview Action Reminder' notification are not received HOT 1
- [Prod] Interview confirmation email notification is not sent sporadically HOT 4
- Download resume email was not received HOT 2
- Cancel interview doesn't work - Interview is not getting canceled and no emails sent HOT 3
- Internal server error while trying to schedule an interview
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from taas-apis.