- This extension is for convenient testing of authentication flows on browser.
- Cedarling is an embeddable stateful Policy Decision Point, or "PDP". Cedarling is integrated with Jans Tarp to make authorization decision post-authentication.
- Chrome
- Firefox (version >= 115.0.3 )
- Node.js (>= v18.15.0)
- Change directory to the project directory (
/jans-tarp
). - Download and extract Cedarling WASM bindings from https://github.com/JanssenProject/jans/releases/download/nightly/cedarling_wasm_{version}_pkg.tar.gz to
/jans-tarp/src/wasm
. - Run
npm install
. - Run
npm run build
. It will create Chrome and Firefox build in/jans-tarp/dist/chrome
and/jans-tarp/dist/firefox
directories respectively. - To pack the build into a zip file run
npm run pack
. This command will pack Chrome and Firefox builds in zip files at/jans-tarp/release
.
Instead of building from source code, you can download and install jans-tarp
directly in your browser. Look for the demo-jans-tarp-chrome-v{x.x.x}.zip
and demo-jans-tarp-firefox-v{x.x.x}.zip
assets in the release section at https://github.com/JanssenProject/jans/releases.
- Go to
Settings --> Extensions
of Chrome browser. - Switch on the
Developer mode
. - Click on
Load unpacked
button to load the extension and select the build created in/jans-tarp/dist/chrome
directory.
The extension can directly installed on Firefox browser from https://addons.mozilla.org/en-US/firefox/addon/janssen-tarp/.
- In Firefox, open the
about:debugging
page. - Click the
This Firefox
option. - Click the
Load Temporary Add-on
button, then select thejans-tarp-firefox-v{}.zip
zip file from/jans-tarp/release/
.
When you are testing Janssen IdP with self-signed cert then follow below steps before client registration using jans-tarp.
- Open the OP_HOST url on browser.
- Accept the security risk due to self-signed cert and continue.
-
Login to KC admin console
-
Go to
Clients --> Client registration --> Client details --> Trusted Hosts
and set localhost as Trusted Hosts (as your KC is running on localhost).
- Go to
Client scopes
and create a scope with nameopenid
. The assigned type should beOptional
.
Once above configuration is done, jans-tarp can be used test KC IdP.