As a poll user, I'd like the survey results to only be downloaded by authorized users. Instead of creating and maintaining separate usernames + passwords in our database, an open-source IAM provider such as KeyCloak will be used to protect the endpoints in both the poll and poll-owner-basic applications.
Acceptance criteria:
Keycloak production is setup to run in a secured cloud environment
The button to the survey endpoint is exposed on the app
When the button is clicked or the user navigates to the /survey endpoint manually:
The KeyCloak server is contacted to obtain an OAuth2 bearer token
2 Optionally exchange the bearer token for a JWT (JSON Web Token)
If the token is valid access to the results is granted and the download proceeds as it does today.
As a poll user, I'd like the survey results to only be downloaded by authorized users. Instead of creating and maintaining separate usernames + passwords in our database, an open-source IAM provider such as KeyCloak will be used to protect the endpoints in both the poll and poll-owner-basic applications.
Acceptance criteria:
See: