Discussion: L3AFD Secure web api #20
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
jniesz
requested changes
Mar 9, 2022
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
sanfern
force-pushed
the
sanfern-secure-web-api
branch
from
d578c5f
to
cf51dd8
Compare
dthaler
reviewed
Mar 11, 2022
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
|
LGTM, thanks to everyone for their input/feedback! |
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
dthaler
reviewed
Mar 23, 2022
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
dthaler
reviewed
Mar 31, 2022
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
sanfern
force-pushed
the
sanfern-secure-web-api
branch
from
b2d84b2
to
f5cc3f4
Compare
dthaler
reviewed
Apr 6, 2022
discussions/secure_web_api.md
Outdated
|
|
||
| L3AF could be running in two scenarios, users can use L3AF in secure enterprise private networks and in public network. | ||
| In case of private network, L3AFD and clients will be communicating with each other over a network that is normally | ||
| protected by vpn or PCI (Payment Card Information), and hence it may not be essential to enable mTLS in this case. |
There was a problem hiding this comment.
Suggested change
| protected by vpn or PCI (Payment Card Information), and hence it may not be essential to enable mTLS in this case. | |
| protected by vpn or PCI (Payment Card Information), and hence some may not consider it essential to enable mTLS in this case, although the current industry trend and best practice is to consider it essential even on private networks, which trend uses the [Zero trust security model](https://en.wikipedia.org/wiki/Zero_trust_security_model). |
Signed-off-by: Santhosh Fernandes <santhosh.fernandes@gmail.com>
sanfern
force-pushed
the
sanfern-secure-web-api
branch
from
a9f3a8c
to
b782dea
Compare
dthaler
approved these changes
Apr 6, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Signed-off-by: Santhosh Fernandes santhosh.fernandes@gmail.com