1 27 2025 Tech Team Report - QualitativeDataRepository/TechnicalTeam GitHub Wiki

1-27-2025

Date	Task	Hours (Main)
13-Jan-2025	Reporting, meeting, investigate reported login errors	2
14-Jan-2025	Investigate/fix SSO first login, add new capability to do WebAuthn with social login, update relevant text, fix reg form warnings, deploy all to dev/stage	6
15-Jan-2025	Update dev to Keycloak 26.1.0 with Keycloak-orcid v 1.4.0-qdr-dev plugin, merge theme changes, investigate account theme changes	4
17-Jan-2025	Merge Drupal keycloak module 2.2.0 with our custom code, investigate/fix bug in redirect url, comment on drupal bug report, deploy to dev/stage, test, investigate style changes on Keycloak 26.1.0 login, start developing css	3
20-Jan-2025	Work on login page styling with Keycloak 26.1.0- headers, site title, social providers	2
21-Jan-2025	More login styling for Keycloak 26.1.0 - social providers, find/fix/report #11174/#11175 - affiliationId in DataCite incorrect, investigate social login issues in 26.1.0	4
22-Jan-2025	Fix Google OTP page, fix ORCID login to sandbox, investigate/setup react account theme, initial test on dev	4
23-Jan-2025	Setup github project for account theme, redeploy test setup, start investigating removing sidebar, etc.	4
24-Jan-2025	Work through changes to logo, background, links, Logout menu, missing styling in main body, redirect to avoid seeing blank page, update Drupal link to account console, coord re: testing, report file metrics bug, coord re: /var/www/html/* on stage/prod	6

Investigated/fixed SSO first login. The problem was related to some Keycloak config changes to allow WebAuthn/passkeys to work. In developing a solution, I discovered I could also make passkeys work when logging in via ORCID/Google. So - the restriction of passkeys to only local accounts no longer exists. I also updated relevant text to drop this restriction.
Updated Keycloak to 26.1.0 on dev:
- Created v1.4.0-qdr-dev plugin based on the new open source 1.4.0 version,
- Merged our QDR theme changes with updated in 26.1.0
- Made additional login theme changes to address changes in Keycloak - re-add our headers, css, revert two-column change, fix our OTP app icons, etc.
- Fixed OTP setup/login page
- Set Keycloak/ORCID plugin to use sandbox (investigated using env. variables/just changed default)
- Investigated react app used for account config pages, setup github for a custom version, configured nvm/npm/installed/tested app, removed sidebar, changed logos, added links, changed styling, changed logout to logout of QDR

Fixed reg form warnings - the mechanism we used to hide/show warnings when users are under 18 or not in allowed countries appears to have stopped working at some point. I was unable to discover why given that it appears to still be supported in Drupal 10, but I was able to use an alternate approach.
Updated/merged the Drupal 2.2.0 Keycloak module - we have a custom version with minor changes
- Investigated/fixed bug in redirectUrl - checked that it has been reported in Drupal, commented to confirm the proposed fix there

Found/fixed an issue w.r.t. reporting the author affiliation when using ROR/the ROR script. - #11174/#11175, now deployed to dev/stage
Checked impact of metrics bug in #11189 on prod ~25% diff in file total vs. time series endpoints due to multiple versions, fix now deployed on dev/stage.

Background work to change/remove deprecated Drupal modules in prep for 11.0.0
Fix #113 if possible
Matomo - investigate event-level tracking via tag manager, remove non-working google scripts
AnnoRep - explore round-trip, configure auto-start and log rotation
Ops
- check missing globalidcreationdates and fix via /modifyRegistration or alternative
Dataverse
- Make PR for guestbook adding datasetversion fix
- Popup info accessibility - IQSS likes the recommendations from the source I linked to, so this can be implemented along those lines.
QDAS Previewer
- Updates per request
- Investigate writing aux file/previewing lower-sensitivity version and/or other write options
TBD: FRDR Security