Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Allow external authentication on a reverse proxy #73

Closed
To-om opened this issue Nov 14, 2018 · 0 comments

Comments

Projects
None yet
1 participant
@To-om
Copy link
Contributor

commented Nov 14, 2018

This feature allow to delegate authentication to a reverse proxy, in front of the application. The user identity is forwarded using HTTP header.
This feature is enabled by adding auth.method.header = true in application.conf. Then the name of the header must be set by auth.header.name = AUTH_USER

This feature may imply security flaw if an user can contact TheHive directly. He would be able to set the configured header and choose his identity. Before enabling this feature, it is important to be sure that only the reverse proxy can contact the application.

@To-om To-om added the enhancement label Nov 14, 2018

@To-om To-om added this to the 1.7.0 milestone Nov 14, 2018

@To-om To-om self-assigned this Nov 14, 2018

@To-om To-om closed this Nov 14, 2018

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.