[Hawkular-dev] Tenancy model (was Re: Do not depend on Keycloak anymore)

Heiko W.Rupp hrupp at redhat.com
Mon Apr 18 14:30:29 EDT 2016


On 18 Apr 2016, at 18:43, Thomas Segismont wrote:

> If we don't check that the authenticated user can only access the data he
> is entitled to read, it's not good. It's protecting your web application
> with client side checks only.

In the use case where you only have one
user, this probably does not matter too
much.



More information about the hawkular-dev mailing list