From beadc0b7c1671b32c5b700dbf34e4e23e44d21d0 Mon Sep 17 00:00:00 2001 From: Jorge Romero Date: Fri, 15 May 2026 10:21:48 +0200 Subject: [PATCH 1/3] Add addressd 0.0.0.0 to the db export --- Makefile | 1 + 1 file changed, 1 insertion(+) diff --git a/Makefile b/Makefile index ff7c92a..ceea7c8 100644 --- a/Makefile +++ b/Makefile @@ -406,6 +406,7 @@ db-port-forward: @echo "$(YELLOW)Press Ctrl+C to stop the tunnel$(NC)" kubectl port-forward \ --namespace $(NAMESPACE) \ + --address 0.0.0.0 \ service/$(DB_K8S_SERVICE) \ $(DB_PF_LOCAL_PORT):$(DB_PF_REMOTE_PORT) From 09b95b3b89b5f24b0b9ca14ed92a36666033be25 Mon Sep 17 00:00:00 2001 From: Jorge Romero Date: Fri, 15 May 2026 12:32:34 +0200 Subject: [PATCH 2/3] Refactor certificate installation script to create truststore from Java cacerts --- docker/install-certs.sh | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/docker/install-certs.sh b/docker/install-certs.sh index bfd62c3..bbd3f32 100755 --- a/docker/install-certs.sh +++ b/docker/install-certs.sh @@ -19,10 +19,12 @@ fi CERT_DIR=$(mktemp -d) echo "Created temporary directory: $CERT_DIR" -echo "Creating new custom truststore from scratch at: $CUSTOM_TRUSTSTORE" +echo "Creating custom truststore based on Java cacerts at: $CUSTOM_TRUSTSTORE" -# Remove existing truststore if it exists +# Copy Java cacerts as the base truststore rm -f "$CUSTOM_TRUSTSTORE" +cp "$JAVA_HOME/lib/security/cacerts" "$CUSTOM_TRUSTSTORE" +chmod 600 "$CUSTOM_TRUSTSTORE" # Split CERT_URLS by comma and process each URL IFS=',' read -ra URLS <<< "$CERT_URLS" From b50451a032e00a087465955ded98a22e1a63fe7e Mon Sep 17 00:00:00 2001 From: Jorge Romero Date: Fri, 15 May 2026 12:33:01 +0200 Subject: [PATCH 3/3] Add SQL migration for Project Components APIs and update visibility for project-platforms-v1 --- .../migrations/005_add_component_apis.sql | 26 +++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 persistence/src/main/resources/db/changelog/migrations/005_add_component_apis.sql diff --git a/persistence/src/main/resources/db/changelog/migrations/005_add_component_apis.sql b/persistence/src/main/resources/db/changelog/migrations/005_add_component_apis.sql new file mode 100644 index 0000000..825794f --- /dev/null +++ b/persistence/src/main/resources/db/changelog/migrations/005_add_component_apis.sql @@ -0,0 +1,26 @@ +--liquibase formatted sql + +-- ============================================================================ +-- changeset ods:007-update-platform-api-visibility +-- Description: Set project-platforms-v1 API as public. +-- ============================================================================ +UPDATE api_definitions +SET is_public = TRUE +WHERE api_id = 'project-platforms-v1'; + +--rollback UPDATE api_definitions SET is_public = FALSE WHERE api_id = 'project-platforms-v1'; + + +-- ============================================================================ +-- changeset ods:008-seed-component-api-definitions +-- Description: Seed API definitions for Project Components APIs v0 and v1. +-- ============================================================================ +INSERT INTO api_definitions (api_id, name, base_path, version, auth_types, is_public, enabled) +VALUES + ('project-component-v1', 'Project Components API v1', 'projects/*/components', 'v1', ARRAY['CLIENT_CREDENTIALS', 'OBO'], FALSE, TRUE), + ('project-component-v0', 'Project Components API v0', 'projects/*/components', 'v0', ARRAY['CLIENT_CREDENTIALS', 'OBO'], FALSE, TRUE) +ON CONFLICT (api_id) DO NOTHING; + +--rollback DELETE FROM api_definitions WHERE api_id IN ('project-component-v1', 'project-component-v0'); + +