Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

​​Integration of Authentication & Authorization Mechanism for CRUD API with IAM (API Gateway) #2301 #78

Open
1 task
Schpidi opened this issue Sep 13, 2024 · 1 comment
Open
1 task

​​Integration of Authentication & Authorization Mechanism for CRUD API with IAM (API Gateway) #2301 #78

Schpidi opened this issue Sep 13, 2024 · 1 comment
Assignees
@jankovicgd
Labels
EOX
Milestone
Q3

Comments

@Schpidi
Copy link

Schpidi commented Sep 13, 2024
edited by j08lue
Loading

  • Identify and document mechanism to secure STAC API Transaction Extension endpoints via the chosen API Gateway (ingress auth) solution
@Schpidi Schpidi added this to the Q3 milestone Sep 13, 2024
@j08lue j08lue added the EOX label Sep 30, 2024
@j08lue j08lue mentioned this issue Nov 28, 2024
Open
@achtsnits
Copy link

achtsnits commented Dec 3, 2024
edited
Loading

topic got discussed today, see https://eoepca.slack.com/archives/C078J079YLR/p1733232422205209

agreement with Richard to focus on coarse grained authorization based on HTTP routes and HTTP methods for Beta-2 release

the APISIX ingress can be configured to enforce preconfigured Keycloak policies checking Identity Information (like group membership) against current HTTP request

Felix already provided overview for STAC API Transactions
https://eoepca.slack.com/archives/C078J079YLR/p1733231324225879

as soon as we got that working there we need to follow-up on other endpoints which are platform-user facing and need protection

@achtsnits achtsnits mentioned this issue Dec 3, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jankovicgd jankovicgd

Labels
EOX
Projects
None yet
Milestone
Q3
Development

No branches or pull requests
4 participants
@Schpidi @j08lue @jankovicgd @achtsnits