Authentication credentials on some APIs

gate-sso / gate

Gate is MFA Enabled SSO Platform that supports SAML, OAuth, Linux shell login and CAS

https://gate-sso.github.io

MIT License

203 stars 53 forks source link

Closed giosakti closed 1 month ago

giosakti commented 6 years ago

Currently on some APIs that is oftenly accessed, such as nss we're authenticating with personal access token.

Should we refactor it so that it also allows registered api resources with their access key to access nss API?

Because personal token tied to user, while nss APIs are accessed by external services

ajeygore commented 5 years ago

Actually NSS APIs now use host based token - those are issued when host gets registered.

giosakti commented 5 years ago

Some are still not, for example this one on nss

...
def groups_list
    token = AccessToken.valid_token params[:token]
if token
...

that API is used by 3rd party services, such as portal to fetch a user groups