gberche-orange
commented
8 years ago Potiential temporary workaround is to hidde access logs until authentication is added to the dashboard
Open gberche-orange opened 8 years ago
gberche-orange
commented
8 years ago Potiential temporary workaround is to hidde access logs until authentication is added to the dashboard
gberche-orange
commented
7 years ago Reopened as part of the auto-enrollment work, so that users are able to get access to the dashboard to get statistics on when the app will be slept, without requiring autosleep admin basic auth
Add UAA authentication to the dashboard, including restricting access to the space members.
See http://docs.cloudfoundry.org/services/dashboard-sso.html#on-scopes
cloud_controller_service_permissions.readAllows access to the CC endpoint that specifies whether the user can manage agiven service instance
http://apidocs.cloudfoundry.org/226/service_instances/retrieving_permissions_on_a_service_instance.html
https://github.com/cloudfoundry/cloud_controller_ng/blob/606033f98c821ec1cd1bad6e47fe3bff339c5b23/spec/unit/controllers/services/service_instances_controller_spec.rb#L2980-L3038
https://github.com/cloudfoundry/cloud_controller_ng/blob/965dbc4bdf65df89f382329aef39f86a916b3f05/spec/unit/access/service_instance_access_spec.rb#L241-L250
https://github.com/Orange-OpenSource/db-dumper-service might provide inspiration on the spring-boot config for the dashboard