Skip to content

Enabling Entra Auth#3251

Open
itsthatianguy wants to merge 16 commits into
mainfrom
feature/CDD-3437-entra-auth
Open

Enabling Entra Auth#3251
itsthatianguy wants to merge 16 commits into
mainfrom
feature/CDD-3437-entra-auth

Conversation

@itsthatianguy

@itsthatianguy itsthatianguy commented Jun 12, 2026

Copy link
Copy Markdown
Contributor

Description

This PR includes the following:

  • When looking for an auth header, first checks for Cognito, if not present checks for Entra
  • Entra token validation and user manager added
  • Permissions lookup for Entra, Cognito updated to lookup permissions if not found in the token
  • If the Entra App ID isn't found in the database, returns a 401

NOTE: This is expecting the app consumer to be a created User in the database. Follow up ticket to move that into a separate entity if required

Type of change

Please select the options that are relevant.

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • Tech debt item (this is focused solely on addressing any relevant technical debt)

Checklist:

  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • I have added tests at the right levels to prove my change is effective
  • I have added screenshots or screen grabs where appropriate
  • I have added docstrings in the correct style (google)

@itsthatianguy itsthatianguy marked this pull request as ready for review June 12, 2026 10:25
@itsthatianguy itsthatianguy requested a review from a team as a code owner June 12, 2026 10:25
mattjreynolds
mattjreynolds reviewed Jun 19, 2026
View reviewed changes
Comment thread common/auth/jwt/backend.py Outdated
Comment thread common/auth/jwt/user_manager.py
@sonarqubecloud

sonarqubecloud Bot commented Jun 26, 2026

Copy link
Copy Markdown

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mattjreynolds mattjreynolds mattjreynolds approved these changes
+1 more reviewer
@kathryn-dale kathryn-dale kathryn-dale approved these changes
Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@itsthatianguy @mattjreynolds @kathryn-dale @sahmed06