Description
Security Enhancements to Backend and Prem-Services
Summary
With the implementation of this pull request, our backend internal services (i.e., premd, dnsd) and prem-services will be secured with an API key security layer. Previously, we only had basic authentication in place for prem-app access.
Changes:
API Key Security: All backend services (both internal and prem-services) now require API key authentication.
Basic Auth Removal: While basic authentication is being phased out, the installer script will still provide the username and password which will be used by prem-app to login.
Root API Key Integration: The installer script will generate a Root-Api-Key, which will be passed to authd via environment variables.
New API Endpoints: Authd now exposes specific API endpoints detailed in this documentation.
Description Security Enhancements to Backend and Prem-Services
Summary With the implementation of this pull request, our backend internal services (i.e., premd, dnsd) and prem-services will be secured with an API key security layer. Previously, we only had basic authentication in place for prem-app access.
Changes: API Key Security: All backend services (both internal and prem-services) now require API key authentication.
Basic Auth Removal: While basic authentication is being phased out, the installer script will still provide the username and password which will be used by prem-app to login.Root API Key Integration: The installer script will generate a Root-Api-Key, which will be passed to authd via environment variables.
New API Endpoints: Authd now exposes specific API endpoints detailed in this documentation.
Enhancements to prem-app:
@tiero @filopedraz @Janaka-Steph