Skip to content

Commit 3fa70bc

Browse files
Merge branch 'main' into sc-UID2-6903-add-okta-scope
2 parents 9069272 + 2fd65b7 commit 3fa70bc

5 files changed

Lines changed: 29 additions & 3 deletions

File tree

.trivyignore

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -21,4 +21,4 @@ GHSA-72hv-8253-57qq exp:2026-09-01
2121
# gateway) so anonymous external attackers cannot reach the netty epoll socket directly;
2222
# LB-level connection limits and idle timeouts further cap the blast radius. CVSS impact is
2323
# Availability only (C:N/I:N/A:H). Tracking via UID2-7035; revisit on vert.x 5 migration.
24-
CVE-2026-42577 exp:2026-06-08
24+
CVE-2026-42577 exp:2026-09-11

pom.xml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@
66

77
<groupId>com.uid2</groupId>
88
<artifactId>uid2-admin</artifactId>
9-
<version>6.13.39-alpha-247-SNAPSHOT</version>
9+
<version>6.13.39-alpha-248-SNAPSHOT</version>
1010

1111
<properties>
1212
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
@@ -18,7 +18,7 @@
1818
<junit-jupiter.version>5.11.2</junit-jupiter.version>
1919
<uid2-shared.version>11.4.21-alpha-349-SNAPSHOT</uid2-shared.version>
2020
<okta-jwt.version>0.5.10</okta-jwt.version>
21-
<netty.version>4.1.133.Final</netty.version>
21+
<netty.version>4.1.135.Final</netty.version>
2222
<image.version>${project.version}</image.version>
2323
</properties>
2424

src/main/java/com/uid2/admin/auth/OktaCustomScope.java

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,7 @@
88
@Getter
99
public enum OktaCustomScope {
1010
SS_PORTAL("uid2.admin.ss-portal", Role.SHARING_PORTAL),
11+
EUID_SS_PORTAL("euid.admin.ss-portal", Role.SHARING_PORTAL),
1112
SECRET_ROTATION("uid2.admin.secret-rotation", Role.SECRET_ROTATION),
1213
SITE_SYNC("uid2.admin.site-sync", Role.PRIVATE_OPERATOR_SYNC),
1314
METRICS_EXPORT("uid2.admin.metrics-export", Role.METRICS_EXPORT),

src/main/resources/localstack/s3/core/operators/operators.json

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -128,5 +128,21 @@
128128
"key_hash": "rx3SYxt2PdnIIbhGMc0Cue3/JTk9WwyDiMMOp5WiU6pXbdkhjZ+BxgIChzMMZeLqAi/E4G5XZHMFnOe8Zzx3jg==",
129129
"key_salt": "0L8h9CSPfDFEHurZZ33OOogd26zSjApBTWLmYHtauC8=",
130130
"key_id": "UID2-O-L-127-pDqph"
131+
},
132+
{
133+
"key": "UID2-O-L-998-d1sabledKeyForE2ETestOnly00000000000000000000=",
134+
"name": "Disabled Operator (E2E)",
135+
"contact": "Disabled Operator (E2E)",
136+
"protocol": "trusted",
137+
"created": 1618873215,
138+
"disabled": true,
139+
"roles": [
140+
"OPERATOR"
141+
],
142+
"site_id": 998,
143+
"operator_type": "PRIVATE",
144+
"key_hash": "PyhHif4ptfrwvk6tFo7da/OR4TeQlejhUKvIvseMD1F9Wz0jTaWt0DfrKNEmdYvl7C0CxmEWbIT2wY+2kXoQOw==",
145+
"key_salt": "AAECAwQFBgcICQoLDA0ODxAREhMUFRYXGBkaGxwdHh8=",
146+
"key_id": "UID2-O-L-998-d1sab"
131147
}
132148
]

src/test/java/com/uid2/admin/auth/OktaCustomScopeTest.java

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,8 @@
11
package com.uid2.admin.auth;
22

3+
import com.uid2.shared.auth.Role;
34
import org.junit.jupiter.api.Assertions;
5+
import org.junit.jupiter.api.Test;
46
import org.junit.jupiter.params.ParameterizedTest;
57
import org.junit.jupiter.params.provider.Arguments;
68
import org.junit.jupiter.params.provider.MethodSource;
@@ -24,4 +26,11 @@ private static Stream<Arguments> testFromNameData() {
2426
public void testFromName(final String name, final OktaCustomScope scope) {
2527
Assertions.assertEquals(scope, OktaCustomScope.fromName(name));
2628
}
29+
30+
@Test
31+
void euidSsPortalScopeIsRecognised() {
32+
OktaCustomScope scope = OktaCustomScope.fromName("euid.admin.ss-portal");
33+
Assertions.assertNotNull(scope);
34+
Assertions.assertEquals(Role.SHARING_PORTAL, scope.getRole());
35+
}
2736
}

0 commit comments

Comments
 (0)