Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

key-based authentication for WebSockets #204

Open
cchristodulis opened this issue Jul 10, 2018 · 3 comments
Open

key-based authentication for WebSockets #204

cchristodulis opened this issue Jul 10, 2018 · 3 comments
Assignees
@rameshpolishetti
Labels
type/enhancement

Comments

@cchristodulis
Copy link

As an API Provider, I would like to implement key-based security so that I can authenticate incoming requests to open a new WebSockets connection
@cchristodulis cchristodulis added this to the Mashling Sprint 51 milestone Jul 10, 2018
@cchristodulis cchristodulis changed the title key-based authentication for WebSockets (from Aha! MMG-58) key-based authentication for WebSockets Jul 11, 2018
@rameshpolishetti
Copy link
Contributor

PR #223 address this issue by leverages existing gateway security features (basic auth & ldap) to authenticate incoming requests to open a new websocket connection.

Example: https://github.com/TIBCOSoftware/mashling-recipes/tree/master/recipes/proxy-websocket#3-secure-websocket-proxy-gateway-with-basic-authentication

@Beerinder - let me know whether the provided solution is sufficient for this ticket
@jpark800 - adding you for review this ticket

@jpark800
Copy link
Contributor

Basic auth and key based auth are not interchangeable. I suggest adding a key based auth example with a file-based api key store with an interface based design so that other types of the api key stores can be substituted for.

@jpark800 jpark800 removed this from the Mashling Sprint 51 milestone Aug 24, 2018
@jpark800
Copy link
Contributor

Moving to the backlog due to the dependecy on apikey based authentication feature to be available in the future release.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rameshpolishetti rameshpolishetti

Labels
type/enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jpark800 @rameshpolishetti @cchristodulis