Currently, the GraphQL Admin API in Rafiki is using "same network" as a security concern. We'd like to explore and implement a more secure policy for it, looking at Basic Auth and MTLS.
The Admin UI is unsecured right now, we'll need to add login screens to that as well.
Intended Outcomes
Design, spec and implement a security mechanism for the Admin API.
How will it work?
There is a secure communication mechanism between the account provider and the backend service.
Summary
Currently, the GraphQL Admin API in Rafiki is using "same network" as a security concern. We'd like to explore and implement a more secure policy for it, looking at Basic Auth and MTLS.
The Admin UI is unsecured right now, we'll need to add login screens to that as well.
Intended Outcomes
Design, spec and implement a security mechanism for the Admin API.
How will it work?
There is a secure communication mechanism between the account provider and the backend service.
Links
Resources