Merge pull request #67 from carverauto/updates/ory_api

Updates/ory api
carverauto · Nov 25, 2024 · 1ed6724 · 1ed6724
2 parents 879289f + b7cf194
commit 1ed6724
Show file tree

Hide file tree

Showing 26 changed files with 71 additions and 455 deletions.
diff --git a/cmd/api-admin/.ko.yaml b/cmd/api-admin/.ko.yaml
diff --git a/cmd/api-admin/Dockerfile b/cmd/api-admin/Dockerfile
diff --git a/cmd/api-admin/Makefile b/cmd/api-admin/Makefile
diff --git a/cmd/api-admin/configs/.env b/cmd/api-admin/configs/.env
diff --git a/cmd/api-admin/main.go b/cmd/api-admin/main.go
diff --git a/cmd/api-admin/superuser.json b/cmd/api-admin/superuser.json
diff --git a/cmd/api/configs/.env b/cmd/api/configs/.env
@@ -3,8 +3,8 @@ HTTP_PORT=8200
 
 LOG_LEVEL=DEBUG
 
-JWKS_SERVER=https://affectionate-brattain-fl0yahcycw.projects.oryapis.com/.well-known/jwks.json
 DSN=mongodb://er-mongodb.mongo.svc.cluster.local:27017
+ORY_SDK_URL=http://hydra-admin.auth:4445
 ORY_SCHEMA_ID=
 DB_HOST=localhost
 DB_USER=root

diff --git a/cmd/api/configs/.staging.env b/cmd/api/configs/.staging.env
@@ -4,5 +4,6 @@ HTTP_PORT=8200
 LOG_LEVEL=DEBUG
 
 ORY_PROJECT_URL=http://localhost:4455
-DB_URL=mongodb://mongodb.svc.cluster.local:27017
+DB_URL=mongodb://er-mongodb.mongo.svc.cluster.local:27017
+DSN=mongodb://er-mongodb.mongo.svc.cluster.local:27017
 DB_NAME=eventrunner
diff --git a/cmd/api/main.go b/cmd/api/main.go
@@ -4,7 +4,6 @@ package main
 
 import (
 	"context"
-	"os"
 	"time"
 
 	"github.com/carverauto/eventrunner/pkg/api/handlers"
@@ -38,8 +37,8 @@ func main() {
 
 	// Initialize Ory client
 	oryClient := ory.NewConfiguration()
-	oryClient.Servers = ory.ServerConfigurations{{URL: os.Getenv("ORY_SDK_URL")}}
-	// oryClient.DefaultHeader["Authorization"] = "Bearer " + os.Getenv("ORY_PAT")
+
+	oryClient.Servers = ory.ServerConfigurations{{URL: "http://hydra-admin.auth:4445"}}
 
 	apiClient := ory.NewAPIClient(oryClient)
 
@@ -61,6 +60,17 @@ func main() {
 	// Add other middleware and routes
 	app.UseMiddleware(middleware.CustomHeadersMiddleware())
 
+	// API Credentials routes
+	app.POST("/api/admin/credentials", middleware.Adapt(
+		h.CreateAPICredential,
+		middleware.RequireUser,
+	))
+
+	app.GET("/api/admin/credentials", middleware.Adapt(
+		h.ListAPICredentials,
+		middleware.RequireUser,
+	))
+
 	// this endpoint is used by the Ory Kratos login flow
 	app.GET("/callback", func(ctx *gofr.Context) (interface{}, error) {
 		code := ctx.Request.Param("code")

diff --git a/docs/auth.md b/docs/auth.md
@@ -9,7 +9,9 @@ EventRunner uses Ory's identity stack for authentication:
 - Hydra: OAuth2 provider
 - Oathkeeper: API gateway and access control
 
-## Flow Diagram
+## Flow Diagrams
+
+### Overview
 
 ```mermaid
 sequenceDiagram
@@ -46,6 +48,25 @@ sequenceDiagram
     Hydra-->>Oathkeeper: Token valid + claims
     Oathkeeper->>API: Request + X-headers
 ```
+### User Registration Flow
+
+```mermaid
+sequenceDiagram
+    participant Client
+    participant Hydra
+    participant Kratos
+    
+    Client->>Hydra: POST /oauth2/register
+    Note over Client,Hydra: Sends metadata, redirect URIs, etc.
+    Hydra->>Hydra: Validates request
+    Hydra-->>Client: Returns client_id, client_secret
+    Note over Client,Hydra: Also returns registration_access_token
+    
+    Note over Client,Hydra: Later...
+    Client->>Hydra: GET /oauth2/register/{client_id}
+    Note over Client,Hydra: Uses registration_access_token
+    Hydra-->>Client: Returns client config
+```
 
 ## Step-by-Step Guide
 

diff --git a/k8s/api-admin/base/api-admin.yaml b/k8s/api-admin/base/api-admin.yaml
diff --git a/k8s/api-admin/base/configmap.yaml b/k8s/api-admin/base/configmap.yaml
diff --git a/k8s/api-admin/base/db-creds.yaml b/k8s/api-admin/base/db-creds.yaml