Figure out how the SPOG will authenticate with Grafana
Problem Statement
In order to show embedded iframes in the single pane of glass, we need to have authentication cookie. As researched in the Grafana Proof of Concept, there is a setting to allow anonymous authentication. Of course we can't have this for the real application.
Goal
To to find a solution to allow the frontend application to automatically authenticate with Grafana. This would be used in the Single Sign On workflow to handle all of the authentication required.
Hypothesis
In order to solve this problem, I think we will need to use Grafana's APIs to automatically authenticate the SPOG with Grafana. I am assuming that we have already authenticated with Carrier using a Single Sign on (SSO)
Questions
[x] How can we sign in to Grafana automatically?
[x] How can use define users/roles in Grafana?
[x] What APIs does Grafana have for authentication?
[x] What alternatives do we have if the Grafana APIs do not fulfill the needs?
[x] How will we handle a token expiring?
[x] What are the implications on security?
Research Tasks
[x] Research Grafana API docs
[x] Document Findings
[ ] Review with team
[ ] Review with stakeholders
Results and Conclusion (Document in comments & in a word doc)
Summarize the results of your research. What did you learn? What worked? What didn't work? What are the implications of the results?
Based on your results, what is your conclusion? What do you recommend? What is your next step?
peber7
commented
10 months ago
Figure out how the SPOG will authenticate with Grafana
Problem Statement
In order to show embedded iframes in the single pane of glass, we need to have authentication cookie. As researched in the Grafana Proof of Concept, there is a setting to allow anonymous authentication. Of course we can't have this for the real application.
Goal
To to find a solution to allow the frontend application to automatically authenticate with Grafana. This would be used in the Single Sign On workflow to handle all of the authentication required.
Hypothesis
In order to solve this problem, I think we will need to use Grafana's APIs to automatically authenticate the SPOG with Grafana. I am assuming that we have already authenticated with Carrier using a Single Sign on (SSO)
Questions
Research Tasks
Results and Conclusion (Document in comments & in a word doc)
Summarize the results of your research. What did you learn? What worked? What didn't work? What are the implications of the results?
Based on your results, what is your conclusion? What do you recommend? What is your next step?