chore(main): release oidc-bff 0.1.0

.release-please-manifest.json

@@ -14,5 +14,6 @@
   "+7": "0.0.0",
   "workflows-cli": "0.1.1",
   "+8": "0.0.0",
-  "backend/auth-daemon": "0.1.0"
+  "backend/auth-daemon": "0.1.0",
+  "backend/oidc-bff": "0.1.0"
 }

backend/oidc-bff/CHANGELOG.md

@@ -0,0 +1,21 @@
+# Changelog
+
+## 0.1.0 (2026-05-21)
+
+
+### Features
+
+* add auth-core components to Dockerfiles ([8fe473c](https://github.com/DiamondLightSource/workflows/commit/8fe473cf347b8581947ab443c1c886b2d9686557))
+* **backend:** add logout function and routes ([2a53d40](https://github.com/DiamondLightSource/workflows/commit/2a53d40a142ea192bcfb815d1829b4dc1d5ad10c))
+* **backend:** auth-core scaffolding ([0328460](https://github.com/DiamondLightSource/workflows/commit/03284609a11b628aea2b9e47380b906df055058c))
+* **backend:** fixed oidc-bff devcontainer ([10b79ba](https://github.com/DiamondLightSource/workflows/commit/10b79ba8f9d7dc25e1a51e6ce45f7433b19f4477))
+* proof-of-concept authentication in workflows with authorization code flow with pkce  method ([32b9566](https://github.com/DiamondLightSource/workflows/commit/32b95668825f357beeb9031f6446a2685a684f70))
+
+
+### Bug Fixes
+
+* **backend:** modify oidc-bff to use auth-core ([9f2b3c9](https://github.com/DiamondLightSource/workflows/commit/9f2b3c937f7baf72f5560570c0428e9ecfdb2840))
+* **backend:** removed duplicate code ([581a1ca](https://github.com/DiamondLightSource/workflows/commit/581a1cacdb8555251680792dfe2cbe04107c1e02))
+* **backend:** updated backend dependencies ([e124b23](https://github.com/DiamondLightSource/workflows/commit/e124b23ef1fe9322dce880d8efa3d9bb3b212437))
+* **oidc-bff:** remove posix-gid scope from token request ([e6619a7](https://github.com/DiamondLightSource/workflows/commit/e6619a74c22a23d2657e9e05e27693a38f84333d))
+* **oidc-bff:** set expiry time on tower session store ([fce988d](https://github.com/DiamondLightSource/workflows/commit/fce988d4c3f50c29dbf9e1effc4a48dc116401e0))

charts/dashboard/staging-values.yaml

@@ -2,11 +2,10 @@ configuration:
   keycloakUrl: https://identity-test.diamond.ac.uk
   keycloakRealm: dls
   keycloakClient: workflows-ui-dev
-  keycloakScope: "openid profile posix-uid email"
+  keycloakScope: openid profile posix-uid email
   graphUrl: https://staging.workflows.diamond.ac.uk/graphql
   graphWsUrl: wss://staging.workflows.diamond.ac.uk/graphql/ws
-  sourceDir: "/usr/share/nginx/html"
-
+  sourceDir: /usr/share/nginx/html
 ingress:
   hosts:
     - host: staging.workflows.diamond.ac.uk
@@ -26,18 +25,16 @@ ingress:
           service:
             name: oidc-bff
             port: 80
-
   tls: true
   secretName: dashboard-tls-cert
   host: staging.workflows.diamond.ac.uk
-
 oidcBff:
   enabled: true
   image:
     registry: ghcr.io
     repository: diamondlightsource/workflows-oidc-bff
-    tag: "tbt"
-    digest: "sha256:568b03a69ed9dda9df5bd96470ebba46d0460b7703c71b8ae3333c723a615d89"
+    tag: 0.1.0
+    digest: sha256:568b03a69ed9dda9df5bd96470ebba46d0460b7703c71b8ae3333c723a615d89
     pullPolicy: IfNotPresent
     pullSecrets: []
   configuration: