IUA missing documentation for keycloak configuration

77c65f73 · Pierre-Marie VAN HOUTEGHEM · 692a6e1b · 77c65f73 · 77c65f73 · 77c65f73
Commit 77c65f73 authored 3 months ago by Pierre-Marie VAN HOUTEGHEM
--- a/IUA-Simulator/installation.md
+++ b/IUA-Simulator/installation.md
@@ -4,7 +4,7 @@ subtitle: IUA Simulator
 author: Pierre-Marie VAN HOUTEGHEM, CLaude LUSSEAU
 function: Software Engineer
 date: 2023-04-05
-toolversion: 1.0.0
+toolversion: 1.0.2
 version: 1.00
 status: To be reviewed
 reference: KER1-MAN-IHE-IUA-SIMULATOR_INSTALLATION-1\_01
@@ -38,3 +38,30 @@ Once the application is deployed, open a browser and go to http://yourserver/iua
 If the deployment is successful, you should receive a 200 Ok Response.

 The sources of the projects are available on [Inria's gitlab](https://gitlab.inria.fr/gazelle/public/simulation/iua-simulator.git).
+
+## Keycloak Configuration
+
+In order to use IUA at full capacity, a few things have to be configurated inside keycloak by hand.
+
+### Create a client  
+
+Access Keycloak through the Admin interface by going at http://yourserver/iua-sso
+On the top left select the realm in which you wish to create your client.
+Go to the clients menu and press "Create Client"
+
+On the first page, verify the value of client type is "OpenID Connect" and put the client id of your new client.
+On the next page, turn on the Client Authentication switch, then check "Standard flow", "Direct access grants" and "service accounts roles".
+On the last page, add the url of the client, and their redirect and logout redirects uris. You can then click save.
+
+Don't forget to retrieve the client authenticator and client secret for your requests. 
+
+### Dynamic scopes for CH scopes
+
+By default starting from version 1.0.2, Keycloak handles the dynamic variabilty of a few scopes sent in the ITI transactions.
+But they need to be added by hand for each client that uses them.
+
+For this, go to the keycloak admin interface, then go the CH IUA realm. 
+Find your client in the clients list, select it and go to the Client scopes tab.
+In this tab, press "Add client scope". A popup appears where you can select every item. Then press Add then Optional. 
+
+Now your client is ready to recieve dynamic scopes and put them in its access token.
\ No newline at end of file
--- a/IUA-Simulator/release-note.md
+++ b/IUA-Simulator/release-note.md
 ---
 title: Release note
 subtitle: IUA Simulator
-toolversion: 1.0.0
+toolversion: 1.0.2
 releasedate: 2023-04-20
 author: Pierre-Marie VAN HOUTEGHEM, Claude LUSSEAU
 function: Software Engineer

--- a/IUA-Simulator/user.md
+++ b/IUA-Simulator/user.md
@@ -3,7 +3,7 @@ title: User Manual
 subtitle: IUA Simulator
 author: Pierre-Marie VAN HOUTEGHEM, Claude LUSSEAU
 releasedate: 2023-04-20
-toolversion: 1.0.0
+toolversion: 1.0.2
 function: Software Engineer
 version: 1.00
 status: To be reviewed