Authenticate endpoints - Githubissues

RADAR-base / RADAR-Rest-Source-Auth

A simple application to support authorization of wearable devices using OAuth using a webservice with REST Endpoints.

https://radar-base.org/

Apache License 2.0

1 stars 0 forks source link

Authenticate endpoints #53

Closed nivemaham closed 4 years ago

nivemaham commented 4 years ago

Adds a simple Authentication Filter to authenticate endpoints and validate token from Management Portal
Adds a simple health check resource and exclude from Filters

yatharthranjan commented 4 years ago

Why not filter the subjects (in the controller method) based on the permissions on the token? So only those subjects for which the user has access to will be displayed in the frontend then?

nivemaham commented 4 years ago

This is simply an attempt to complete the authentication with MP. The frontend does not query subjects or projects based on user permission. I agree that it would be the way to go. But it would need some work on both ends. This is an attempt to get the authorizer work with MP authentication and use a token from MP instead of Basic authentication on nginx.

nivemaham commented 4 years ago

@mpgxvii Sounds good to me.