Skip to content
This repository has been archived by the owner on May 16, 2023. It is now read-only.

Latest commit

 

History

History
59 lines (40 loc) · 2.55 KB

ELS-VERIFY.md

File metadata and controls

59 lines (40 loc) · 2.55 KB

Error Log Sharing (ELS) Service

This service will expose an API for handling ELS One Time Passwords (OTPs). The role of this service is to redeem Els OTPs and to generate ELS OTPs for testing purposes. During productive usage, the ELS OTPs are created solely by the PPAC service.

External Dependencies

  • Vault: Used for secrets and certificate storage
  • RDBMS: PostgreSQL as the persistent storage for notifications

Environment Variables

ELS-VERIFY has no service-specific environment variables.

Spring Profiles

Spring profiles are used to apply federation key download service configuration based on the running environment, determined by the active profile.

You will find .yaml based profile-specific configuration files at /services/els-verify/src/main/resources.

Available Profiles

Profile Effect
debug Sets the log level to DEBUG.
cloud Removes default values for the spring.flyway, spring.datasource.
generate-els-otp Enables the GenerateElsOtpController that can be used to generate ELS OTPs for testing purposes.

Please refer to the inline comments in the base application.yaml configuration file for further details on the configuration properties impacted by the above profiles.

ElsOtpController

REST-controller that handles incoming GET-request for the redemption of ELS OTPs. It is reading the ELS OTP defined in the ElsOtpRedemptionRequest from the database and triggers its redemption in the ElsOtpService. Depending on the ELS OTP state, the ElsOtpRedemptionResponse is constructed accordingly and sent back to the client.

GenerateElsOtpController

This REST-controller is used for testing purposed only is solely active when spring profile generate-els-otp is enabled. It offers and endpoint that allows to create a specified amount of ELS OTPs in the database that have the specified validity in hours. The response will be a list of OtpTestGenerationResponse, which will result in a list of the generated ELS OTPs together with their expiration time.

ElsOtpControllerExceptionHandler

Responsible for general error handling within the ELS-VERIFY service.

SecurityConfig

The SecurityConfig is responsible for authenticated access to the resources provided by the package. It allows only authenticated requests to the controllers explained above and makes sure that the Actuator endpoints are available for the platform infrastructure. All other requests are being denied.