Open mavencode01 opened 7 years ago
Yes we don't protect all of the /api/*
resources(e.g. retrieve actions). We only protect some actions requiring authentication. Here we protect resource by using a wrapped callback requireLogin
in RestAPIVerticle. You may also refer to authentication management section in the blueprint documentation.
Looks like the /api/* resources are not protected by keycloak