Authentication and Authorization

page owner: tfrs developer

BCeID Test Users

Each of team members have three BCeID users on BCeID Test server. Each user is mapped to a different role.

DNS Settings

dev.lowcarbonfuels.gov.bc.ca 142.34.241.25
test.lowcarbonfuels.gov.bc.ca 142.34.241.29
lowcarbonfuels.gov.bc.ca 142.34.241.30

Openshift Routes

Dev:
- main http://dev-lowcarbonfuels.pathfinder.gov.bc.ca
Test:
- main http://test-lowcarbonfuels.pathfinder.gov.bc.ca
Prod:
- main http://lowcarbonfuels.pathfinder.gov.bc.ca

Nginx settings

Only serve /, don't serve /api
location / {
root /tmp/app/dist;
index index.html index.htm;
try_files $uri $uri/ /index.html;
gzip on;
gzip_min_length 1000;
gzip_types *;
}

SiteMinder Headers

location /api
- Sm-UniversalId "[idir or bceid name]";
- Smgov-Userguid "xxxxxx";
- Sm-Authdirname "IDIR";
- Smgov-USERTYPE "Internal";
- Smgov-Useremail "first.last@gov.bc.ca";
- Smgov-UserDisplayName "first, last CSNR:EX";
location /api-business
- Sm-UniversalId "[idir or bceid name]";
- Smgov-Userguid “xxxxxxxxxx";
- Smgov-BusinessLegalName "TFRS Biz Test";
- Smauth-Businesslegalname "TFRS Biz Test";
- Smgov-Businessguid “xxxxx";
- Smgov-Useremail “First.Last@gmail.com";
- Smgov-UserDisplayName “First Last";

Database Models (TBD)

See here: https://github.com/bcgov/tfrs/tree/master/backend/api/models
Models with "roles", "permissions", or "users" in the name are involved in Authorization

Home | License | Code of Conduct | Contributing | Open Content Assessment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly