chrispoole643
commented
7 years ago Moved tracking of this issue to FAB-5909.
Closed chrispoole643 closed 7 years ago
chrispoole643
commented
7 years ago Moved tracking of this issue to FAB-5909.
It's desirable for the server to be able to authenticate those who access the endpoints using LDAP, client certs, OAuth, etc. HTTP basic auth is currently supported.
My suggestion is that we continue using PassportJS, adding support for the extra desired strategies. Basic auth can be kept as a fallback, and otherwise the authentication mechanism should be easy for the user to configure, similar to Hyperledger Composer.