Removing the JWT Authentication logic

NASA-IMPACT / HLS-Transfer-Catalog

Data Catalog to manage HLS S2 transfers from ESA to NASA

Apache License 2.0

2 stars 1 forks source link

Removing the JWT Authentication logic #18

Closed ub0005 closed 2 years ago

ub0005 commented 2 years ago

Since the catalog service is going to be deployed in a private subnet.

Removing the JWT Authentication logic.

ub0005 commented 2 years ago

@DImuthuUpe I remember we discussed that we no longer needed the JWT Authentication of catalog APIs in one of our meetings.

Can you please confirm the same?

If not required, I would like to ahead do some clean-up.

cc: @freitagb @smarru @NISH1001 @xhagrg

DImuthuUpe commented 2 years ago

@ub0005 It is better if there is a JWT Authentication but there should be a proper identity provider to back this up rather than using hard-coded username-password pairs. However, this service runs inside a private subnet, so authentication is not a major requirement.

ub0005 commented 2 years ago

https://github.com/NASA-IMPACT/HLS-Transfer-Catalog/pull/19

cc: @xhagrg @NISH1001