[PR] Access control Service added as a new microservice [texera]

Thu, 25 Sep 2025 07:15:36 -0700 


aicam opened a new pull request, #3767:
URL: https://github.com/apache/texera/pull/3767

   ## Overview
   This PR is fixing the first part of 
[#3634](https://github.com/apache/texera/issues/3634). The full 
[PR](https://github.com/apache/texera/pull/3598) had so many changes so we 
broke it down into two PRs. This PR is the first one that introduce Access 
Control Service only without its usage in any part of the system. 
   
   ## Changes
   Currently, the folder named `access-control-service` is added with its 
dependencies to `auth` folder. Currently, it has test cases to make sure its 
functionality is working correctly.                                             
                                                                                
                                                                                
                                                                                
                                  
   
   <img width="1442" height="643" alt="Screenshot from 2025-09-25 07-14-57" 
src="https://github.com/user-attachments/assets/4698f34a-580c-4f35-a016-969ee87c3ea2";
 />
   
   
   
   | Component/Flow | File | Description |
   | :--- | :--- | :--- |
   | **New `AccessControl` Service** | `core/access-control-service/...` | A 
new Dropwizard-based microservice responsible for authorizing user requests to 
computing units. This includes its build configuration, application setup 
(`AccessControlService.scala`), configuration model 
(`AccessControlServiceConfiguration.scala`), authorization logic 
(`AccessChecker.scala`, `Authorizer.scala`), REST endpoint 
(`AccessControlResource.scala`), and unit tests 
(`AccessControlResourceSpec.scala`). |
   | **Database Access Logic** | 
`core/auth/src/main/scala/edu/uci/ics/texera/auth/util/ComputingUnitAccess.scala`
 | Implements the logic to query the PostgreSQL database and determine a user's 
access privilege (`READ`, `WRITE`, `NONE`) for a given Computing Unit. |
   | | 
`core/auth/src/main/scala/edu/uci/ics/texera/auth/util/HeaderField.scala` | 
Defines constants for the custom HTTP headers (`x-user-cu-access`, `x-user-id`, 
etc.) that are injected by the Access Control Service. |


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Reply via email to