Broadleaf Dev Central

Requirements

Example: JDK 11 is now required for Broadleaf release trains 1.7.0-GA, and beyond.

New Features & Notable Changes

Feature/Notable Change	Related Services	Links
Consolidate role and permission management to the Authentication Service.	Admin User, Auth	Auth Service Release Notes

Feature/Notable Change

Related Services

Links

Consolidate role and permission management to the Authentication Service.

Admin User, Auth

Auth Service Release Notes

Bug Fixes

Issue	Related Services
Fixed index names for Oracle database changelogs	AdminServices, AuthenticationServices, CartServices, CatalogServices, CustomerServices, ImportServices, PromotionServices, SearchServices, OrderServices, SandboxServices, TenantServices, JpaCommon

Issue

Related Services

Fixed index names for Oracle database changelogs

AdminServices, AuthenticationServices, CartServices, CatalogServices, CustomerServices, ImportServices, PromotionServices, SearchServices, OrderServices, SandboxServices, TenantServices, JpaCommon

Schema Changes & Data Migrations

Liquibase Change Sets

Create/Update SQL	Drop SQL
PostgreSQL changelog Oracle changelog MySQL changelog MariaDB changelog	PostgreSQL drop changelog Oracle drop changelog Oracle short indexes drop changelog MySQL drop changelog MariaDB drop changelog

Create/Update SQL

Drop SQL

Configuration Properties

Added Properties

broadleaf.auth-properties.auth-uri
- Description: OAuth2 authentication URI
- Default value: https://localhost:8443
broadleaf.auth-properties.read-roles-by-ids-path
- Description: Auth service roles endpoint
- Default value: /roles/ids
broadleaf.auth-properties.read-permissions-by-ids-path
- Description: Auth service permissions endpoint
- Default value: /permissions/ids
broadleaf.auth-properties.service-client-id
- Description: OAuth2 client id
- Default value: adminuserclient
spring.security.oauth2.client.registration.adminuserclient.authorization-grant-type
- Description: OAuth2 grant type
- Default value: client_credentials
spring.security.oauth2.client.registration.adminuserclient.client-id
- Description: OAuth2 client id
- Default value: adminuserclient
spring.security.oauth2.client.registration.adminuserclient.client-secret
- Description: OAuth2 client secret
- Default value: admin_user_secret
spring.security.oauth2.client.registration.provider.adminuserclient.token-uri
- Description: OAuth2 token endpoint
- Default value: https://localhost:8443/oauth/token

Note	The values for `broadleaf.auth-properties.service-client-id` and `spring.security.oauth2.client.registration.adminuserclient.client-id` should be the same.

Auth Configuration

OAuth Client

Admin Users Services now has a single OAuth2 client for service-to-service communication The following are the default values for OAuth2 client registration. Details about each property are included in [_added_properties]

spring:
  security:
    oauth2:
      client:
        registration:
          adminuserclient:
            authorization-grant-type: client_credentials
            client-id: adminuserclient
            client-secret: admin_user_secret
        provider:
          adminuserclient:
            token-uri: https://localhost:8443/oauth/token

Permissions

There are new permissions and scopes for the OAuth2 client. Permissions and scopes can be added via admin or sql script.

Auth Server	Service	Service ID	New Scopes	New Permissions
Admin	Admin User Service Client	adminuserclient	ROLE, PERMISSION	READ_ROLE, READ_PERMISSION

Auth Server

Service

Service ID

New Scopes

New Permissions

Admin

Admin User Service Client

adminuserclient

ROLE, PERMISSION

READ_ROLE, READ_PERMISSION

Admin User Release Notes for 1.7.0-GA