Skip to content

bcgov/sso-requests

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3,486 Commits
.bin
.bin
 
 
.github
.github
 
 
api
api
 
 
app
app
 
 
assets
assets
 
 
cron
cron
 
 
db
db
 
 
docs
docs
 
 
features/email-notifications
features/email-notifications
 
 
helm
helm
 
 
loadtests
loadtests
 
 
local
local
 
 
role-migration
role-migration
 
 
service-account-generator
service-account-generator
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
.gitlint
.gitlint
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
.prettierignore
.prettierignore
 
 
.prettierrc
.prettierrc
 
 
.tool-versions
.tool-versions
 
 
CODEOWNERS
CODEOWNERS
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
COMPLIANCE.yaml
COMPLIANCE.yaml
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Dockerfile
Dockerfile
 
 
Dockerfile.tf-modules
Dockerfile.tf-modules
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
codecov.yml
codecov.yml
 
 
docker-compose.yml
docker-compose.yml
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
requirements.txt
requirements.txt
 
 
tsconfig.json
tsconfig.json
 
 
yarn.lock
yarn.lock
 
 

Repository files navigation

Common Hosted Single Sign-On

Lifecycle:Stable codecov

Introduction

Common Hosted Single Sign-On (CSS) is an self-serve application developed by Pathfinder SSO Team to enable digital product development teams to request integrations with BC Government approved login options such as IDIR, BCeID and more. See our usage documentation for details on using the application.

Architecture

diagram

Legend

  1. End users access the CSS web application via the browser.
  2. Service accounts authenticate and interact with the CSS API.
  3. CSS Application (Web Portal) The primary user-facing web application built with Next.js.
  4. CSS API A programmatic API for service accounts, built with Express.js.
  5. PostgreSQL Database A highly available PostgreSQL cluster managed by Patroni, serving as the primary data store.
  6. Redis Cluster Used for rate limiting by both the CSS Application and CSS API.
  7. Cron Jobs Service A Node.js service responsible for scheduled tasks such as data reconciliation and cleanup.
  8. CSS API → Keycloak The CSS API connects to Dev, Test, and Production Keycloak instances to perform configuration changes.
  9. CSS Application → Keycloak The CSS Application connects to Dev, Test, and Production Keycloak instances to perform configuration changes.
  10. External Keycloak Instances (Not Shown) Separate Dev, Test, and Production Keycloak environments managed outside this OpenShift namespace.

Getting Started

The full web application, including keycloak instances to connect to, can be run locally with docker-compose up.

To setup a local development environment, a detailed guide may be found here.

Tests

  • Run CSS App tests: make app_test
  • Run CSS API tests: Initiate a test db if first time running with make local_test_db, then make api_test

Release Process

  • Create a pull request from dev to main and update pull request labels to choose a specific type of release
  • release:major - will create a major release (example: v1.0.0 -> v2.0.0)
  • release:minor - will create a minor release (example: v1.0.0 -> v1.1.0)
  • release:patch - will create a patch release (example: v1.0.0 -> v1.0.1)
  • release:norelease - will not trigger any release

About

The request process workflow tool for the RedHat SSO Dev Exchange service

sso-requests.apps.gold.devops.gov.bc.ca/

Topics

citz bcgov-sso

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Contributing

Contributing
Activity
Custom properties

Stars

3 stars

Watchers

2 watching

Forks

4 forks
Report repository

Releases 50

Release 4.8.0 Latest
Jan 27, 2026
+ 49 releases

Packages

 
 
 

Contributors 14

Languages