achave11-ucsc
commented
7 months ago Assignee to create child issue for @hannes-ucsc to investigate B2C and to review the document linked in the description.
Open bvizzier-ucsc opened 8 months ago
achave11-ucsc
commented
7 months ago Assignee to create child issue for @hannes-ucsc to investigate B2C and to review the document linked in the description.
bvizzier-ucsc
commented
7 months ago I discussed a this with Dave. Given the demands on the Data Explorer team, any work on moving authentication to Azul will be delayed to a future date. As a result, I'm going to strike that from the this epic.
Terra currently supports analysis on both Google Cloud Platform (GCP) and Microsoft Azure using either Google or Microsoft identities. In 2024, AnVIL is migrating to Microsoft Azure as it's cloud platform of choice.
As a result, the Data Explorer will need to support both GCP and Microsoft identities. Terra is currently doing this through the use of Microsoft Azure's B2C authentication services for all incarnations of Terra (e.g., AnVIL, HCA, LungMAP, etc.). The Terra team has provided a write-up with a discussion of the implementation.
This epic is for that work.
Currently, user authentication is done in the front-end (Data Browser). Due to the requested implementation timeline, it is suggested that the initial implementation of this be done in the Data Browser.
Edit: Removing the following from this request: "It has been suggested by Dave Rogers that a better implementation would be to do the authentication in Azul. Moving the authentication to Azul can be in a later phase."