Skip to content

feat: add list tenants with create/update scopes endpoint #555

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
botanical wants to merge 20 commits into
base: develop
Choose a base branch
from
Open

feat: add list tenants with create/update scopes endpoint #555

botanical wants to merge 20 commits into from

Conversation

@botanical
Copy link
Member

@botanical botanical commented Dec 9, 2025
edited
Loading

Issue

#521

What?/ Why?

Keycloak Client & Tenant Access Endpoint

  • KeycloakPDPClient which contains functions:
    • get_rpt to request the requesting party token from keycloak
    • check_permission which checks to see is a user has a permission granted for a resource and scope
    • get_tenants_with_create_update_access which gets a list of tenants the user has create and update access to
    • base64 padding helper function (this is needed because the decode function requires proper padding or it will raise an error)
    • JWT permission extraction functions
  • /auth/tenants/writeable endpoint added to Ingest API
  • Ingest API config updated to include resource server client ID and secret env vars

Testing?

-updated SIT envs to have VEDA_KEYCLOAK_UMA_RESOURCE_SERVER_CLIENT_SECRET_NAME and VEDA_KEYCLOAK_SECRET_KMS_KEY_ARN

@botanical botanical marked this pull request as ready for review December 10, 2025 18:20
@stephenkilbourn stephenkilbourn mentioned this pull request Dec 12, 2025
Open
@botanical botanical requested review from anayeaye, ividito, sandrahoang686 and smohiudd and removed request for anayeaye and smohiudd January 6, 2026 22:35
@smohiudd
Copy link
Contributor

smohiudd commented Jan 9, 2026

@botanical I'm not seeing the /auth/tenants/writeable endpoint in the dev ingest api docs

smohiudd
smohiudd reviewed Jan 9, 2026
View reviewed changes
sandrahoang686
sandrahoang686 reviewed Jan 13, 2026
View reviewed changes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@stephenkilbourn stephenkilbourn stephenkilbourn approved these changes

@anayeaye anayeaye Awaiting requested review from anayeaye

@ividito ividito Awaiting requested review from ividito

@sandrahoang686 sandrahoang686 Awaiting requested review from sandrahoang686

@smohiudd smohiudd Awaiting requested review from smohiudd

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@botanical @smohiudd @stephenkilbourn @sandrahoang686