✨ Is3683/traefik invitations rules (⚠️ devops)

[pcrespov]

What do these changes do?

Following the changes requested by @sirtoobii, this PR allows the invitations service http-API to be reachable from outside using basic-auth.

Changes highlights

• traefik rules for the invitations service
• enable/disable auth in invitations (might add the auth in traefik) -> toggle auth increases complexity too much. Will remove all auth when reverse-proxy activates it.

⚠️ devops

invitations service API is accessible via new entrypoint simcore_invitations.address=:10082

• Please check traefik labels in docker-compose
• Please check network associated to invitations service for security issues
• The invitations http has to be routed to https://invitations.$(hostname) where hostname can be
  • s4l-lite-master.speag.com
  • s4l-lite-staging.speag.com
  • s4l-lite.speag.com
  • staging.s4l-lite.io
  • s4l-lite.io
• NOTE: the invitations service still includes basic-auth but we intend to move it to the reverse-proxy in a separate PR (for simplicity).

Related issue/s

• implements last part of Creation of invitations #3683

How to test

• See traefik console image above

Checklist

• make version-*
• make openapi.json
• Unit tests for the changes exist
• Runs in the swarm
• Documentation reflects the changes

[codecov]

Codecov Report

Merging #3787 (dd0db1f) into master (2bd6848) will decrease coverage by 4.4%.
The diff coverage is 100.0%.

@@           Coverage Diff            @@
##           master   #3787     +/-   ##
========================================
- Coverage    84.8%   80.4%   -4.4%     
========================================
  Files         920     920             
  Lines       39131   39130      -1     
  Branches      793     793             
========================================
- Hits        33190   31499   -1691     
- Misses       5731    7421   +1690     
  Partials      210     210             

Flag	Coverage Δ
integrationtests	61.7% <ø> (-5.1%)	⬇️
unittests	77.9% <100.0%> (-4.0%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
...c/simcore_service_invitations/api/_dependencies.py	100.0% <100.0%> (ø)
...rc/simcore_service_invitations/api/_invitations.py	100.0% <100.0%> (ø)
...invitations/src/simcore_service_invitations/cli.py	93.3% <100.0%> (+0.1%)	⬆️
...r/src/simcore_service_webserver/storage_schemas.py	0.0% <0.0%> (-100.0%)	⬇️
...service_webserver/projects/_project_models_rest.py	0.0% <0.0%> (-100.0%)	⬇️
...erver/src/simcore_service_webserver/rest_models.py	0.0% <0.0%> (-92.7%)	⬇️
...simcore_service_webserver/director/director_api.py	0.0% <0.0%> (-76.0%)	⬇️
...src/simcore_service_webserver/activity/handlers.py	29.3% <0.0%> (-63.8%)	⬇️
...ce_webserver/studies_dispatcher/_studies_access.py	22.7% <0.0%> (-63.7%)	⬇️
...ver/src/simcore_service_webserver/catalog_units.py	24.0% <0.0%> (-61.2%)	⬇️
... and 77 more

[sanderegg]

🥇

[codeclimate]

Code Climate has analyzed commit dd0db1f and detected 0 issues on this pull request.

View more on Code Climate.

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

[mrnicegyu11]

lgtm,
will not approve for now since this is blocked until there is a matching ops PR.

[mrnicegyu11]

blocking this until the matching ops PR is in

[pcrespov]

This approach was dropped in favor or https://git.speag.com/oSparc/osparc-ops-environments/-/issues/395