Authentication system for Boost Plan. The Boost Plan is a scaffold for building usable web applications in no time.
BoostAuth provides a unified authentication and authorization service for all other systems provided in the Boost Plan. It supports multiple authentication methods with a built-in administration system.
- Token-based authentication and authorization
- Basic access authentication (RFC 7617)
- Fully-fledged access control
- Management system with frontend
- Delegation support
- Email service
- Admin management
- Group management
- Role-based access control
- Docker-based deployment
- Clients in multiple languages (e.g., Python, JavaScript, PHP)
- Integration with third-party services (e.g., Next Cloud)
- Java 11
- Maven 3.6+
src/main/resources/application[-dev/-local/-prod].yml
docker-compose up
mvn clean package -D maven.test.skip=true -P [local/dev/prod]
- Cannot connect to DB: wait until DB is fully initialized and restart web service
domain:9000/swagger-ui.html
User
: access /view/preregister to preregisterAdmin
: access /admin/view/manage/preregister to approve the preregistration- Optionally,
User
: access an endpoint to officially register with a unique code issued byAdmin
User
: call /token/auth/preregister to preregisterAdmin
: call /admin/identity/approve/{id} to approve the preregistration- Optionally,
User
: access an endpoint to officially register with a unique code issued byAdmin
- Authentication endpoint: GET /basic/login
- Header: Authorization: Basic <username>:<source>:<password>
- /token/auth/preregister Generate
Identity
with UUID andToken
- /token/auth/register Make
Identity
valid - /token/auth/login Sign in
- /token/verify Verify a token
- /token/auth/logout Sign out
- /token/auth/reset/password Reset password