Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Cognito for authentication #57

Merged
merged 9 commits into from
Mar 13, 2024
Merged

Add Cognito for authentication #57

merged 9 commits into from
Mar 13, 2024
+147 −2

Conversation

nickclyde
Copy link
Member

@nickclyde nickclyde commented Feb 28, 2024
edited
Loading

PULL REQUEST

Summary

Adds Cognito so that our endpoints are protected by an authentication check.

Related Issue

Fixes #1311
Depends on #55
Screenshot 2024-02-28 at 3 38 33 PM
Depends on #67

@nickclyde
Use ACM certificate with ALB instead of Cloudfront

Verified

This commit was signed with the committer’s verified signature.
nickclyde Nick Clyde
GPG key ID: FD85BDEF96540B65
Verified
Learn about vigilant mode
Loading
Loading status checks…
e625228
@nickclyde
terraform fmt

Verified

This commit was signed with the committer’s verified signature.
nickclyde Nick Clyde
GPG key ID: FD85BDEF96540B65
Verified
Learn about vigilant mode
Loading
Loading status checks…
3a1fd87
@nickclyde
Add Cognito for authentication

Verified

This commit was signed with the committer’s verified signature.
nickclyde Nick Clyde
GPG key ID: FD85BDEF96540B65
Verified
Learn about vigilant mode
Loading
Loading status checks…
e4a1d5e
DanPaseltiner
DanPaseltiner reviewed Feb 29, 2024
View reviewed changes
Copy link
Collaborator

@DanPaseltiner DanPaseltiner left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Very exciting to have auth enable. I know this turned into a long slog. I have two questions.

  1. Could we add some documentation for how an engineer could generate a bearer token to include with a request from their local to avoid the sign in screen? I'm thinking about demos from Postman/Insomnia on folks' locals.

  2. As continue to build out some UI components for DIBBs we will likely need to give access to CDC stakeholders and potential pilot participants to let them play around to experience the product we are building. Is there a way we could generate some creds that could be shared to allow access? Obviously this is NOT what we would do on production instance. I was just in a call with some stakeholders yesterday where they asked if we could get the FHIR client @m-goggins and I built at the connectathon hosted for publicly for others to be able to play and see what we built.

Base automatically changed from nickclyde/alb-acm to main February 29, 2024 19:57
@nickclyde
Merge branch 'main' into nickclyde/cognito

Verified

This commit was signed with the committer’s verified signature.
nickclyde Nick Clyde
GPG key ID: FD85BDEF96540B65
Verified
Learn about vigilant mode
Loading
Loading status checks…
02cf153
marycrawford
marycrawford approved these changes Mar 5, 2024
View reviewed changes
Copy link
Collaborator

@marycrawford marycrawford left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice! LGTM.

rin-skylight
rin-skylight approved these changes Mar 5, 2024
View reviewed changes
Copy link
Collaborator

@rin-skylight rin-skylight left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚀

nickclyde added 3 commits March 5, 2024 13:27
@nickclyde
Update domain name

Verified

This commit was signed with the committer’s verified signature.
nickclyde Nick Clyde
GPG key ID: FD85BDEF96540B65
Verified
Learn about vigilant mode
93eeaa3
@nickclyde
Various fixes needed for ECR viewer

Verified

This commit was signed with the committer’s verified signature.
nickclyde Nick Clyde
GPG key ID: FD85BDEF96540B65
Verified
Learn about vigilant mode
Loading
Loading status checks…
543741a
@nickclyde
Merge branch 'nickclyde/fixes-for-s3' into nickclyde/cognito

Verified

This commit was signed with the committer’s verified signature.
nickclyde Nick Clyde
GPG key ID: FD85BDEF96540B65
Verified
Learn about vigilant mode
Loading
Loading status checks…
e17cfb0
@nickclyde nickclyde changed the base branch from main to nickclyde/fixes-for-s3 March 11, 2024 21:50
@nickclyde
Add variable for disabling cognito

Verified

This commit was signed with the committer’s verified signature.
nickclyde Nick Clyde
GPG key ID: FD85BDEF96540B65
Verified
Learn about vigilant mode
Loading
Loading status checks…
73720bc
Base automatically changed from nickclyde/fixes-for-s3 to main March 13, 2024 17:23
@nickclyde
Merge branch 'main' into nickclyde/cognito

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode
Loading
Loading status checks…
bbec026
@nickclyde nickclyde merged commit 0f78280 into main Mar 13, 2024
4 checks passed
@nickclyde nickclyde deleted the nickclyde/cognito branch March 13, 2024 17:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@DanPaseltiner DanPaseltiner

@marycrawford marycrawford

@rin-skylight rin-skylight

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@nickclyde @marycrawford @rin-skylight @DanPaseltiner