OIDC_CLIENT_SECRET
, OIDC_CLIENT_ID
, OIDC_AUTHORITY
: use any OIDC provider. Users have access if they have a claim of either type role
or type roles
and a value that corresponds to the environment variable OIDC_KLANTCONTACTMEDEWERKER_ROLE
(Klantcontactmedewerker
by default). If you're using Azure AD, this can be done by creating an application role and assigning it to either groups or individual users. Do the same with OIDC_KLANTCONTACTMEDEWERKER_ROLE
(Redacteur
by default) to enable a user to manage content in KISS.OIDC_MEDEWERKER_IDENTIFICATIE_CLAIM
and OIDC_MEDEWERKER_IDENTIFICATIE_TRUNCATE
: the current ZGW standards limit the medewerker identificatie to a maximum of 24 characters. If you are using KISS with OpenKlant / OpenZaak, this means you either need to configure a claim in OIDC_MEDEWERKER_IDENTIFICATIE_CLAIM
that will never exceed this limit, or configure for it to be truncated by setting OIDC_MEDEWERKER_IDENTIFICATIE_TRUNCATE
to 24. If you are using KISS with the eSuite, make sure you configure a claim in OIDC_MEDEWERKER_IDENTIFICATIE_CLAIM
that contains te username known in the eSuite.KVK_BASE_URL
: for the KvK test environment, use https://api.kvk.nl/test/api
KVK_API_KEY
: for the KvK test environment, look for the API key on the KvK websitecertificates
folder in the root of the repo
Now, you can either run the application from Visual Studio or with docker-composeBe sure to set-up environment variables first
Be sure to set-up environment variables first To run the front-end and BFF with docker you need a cmd opened in the root of this project. Build the KISS-frontend image
docker-compose build
After that you can run the image with its dependencies:
docker-compose up
Then launch a browser on this address
.vue
Imports in TS (Visual Studio Code)Extensions: Show Built-in Extensions
from VSCode's command palette
2) Find TypeScript and JavaScript Language Features
, right click and select Disable (Workspace)
Developer: Reload Window
from the command palette.KISS uses Elastic search. Building a search query is composed of two steps:
Follow these steps to connect your local development environment to an Elastic search instance hosted in Azure/kubernetes. (Note: before you follow these steps make sure you have the role "Co-Administrator" with the corresponding subscription. if you dont, search in the azure subsription and add in the tab 'Access Control', your user with the role 'Co-Administator'. this can be found under the sub tab 'classic administrator'. otherwise redo the steps below)
az login
(once, and make sure that the account you're logging in with, has a the correct role with the corresponding subscription)az account set --subscription [...your subscriptionid...]
(once)az aks get-credentials --resource-group [for example: KISS_Kubernetes_Dev] --name [for example: KISS_Kubernetes_Dev]
kubectl config set-context --current --namespace=[for example: kiss-namespace]
kubectl port-forward service/kiss-ent-http 3002
kubectl port-forward service/kiss-es-http 9200
When adding new migrations to the project, ensure you have the correct startup project selected. You might encounter the following error message if the incorrect project has been selected:
Startup project 'docker-compose' is a Docker project. Select an ASP.NET Core Web Application as your startup project and try again.
To resolve this, follow these steps:
Now, you should be able to add new migrations. The kiss.bff project contains the migrations, and setting this project as your startup project should resolve the above error. Make sure to switch back to the original startup project configuration after adding the migrations, if required for your development process.
An OIDC identity provider is required to login to the application. The secret that is used in the connection must be renewed periodically if Azure AD is used as the identity provider. A redirectloop after log in is an idication the secret has expired