[JBoss JIRA] (ISPN-8736) REST endpoint authorization

Wednesday, 19 June 2019



     [
https://issues.jboss.org/browse/ISPN-8736?page=com.atlassian.jira.plugin....
]

Tristan Tarrant updated ISPN-8736:
----------------------------------
    Description: 
The REST endpoint does not use the authenticated user to access authz caches. We need to:
- integrate with the ServerAuthenticationProvider as used by the Hot Rod endpoint so that
we can use security callbacks and retrieve a fully populated subject (including groups).
This should ultimately connect with Elytron.
- add SecurityActions within the rest code
- Return 403 forbidden where needed

  was:
The REST endpoint does not use the authenticated user to access authz caches. We need to:
- integrate with the ServerAuthenticationProvider as used by the Hot Rod endpoint so that
we can use security callbacks and retrieve a fully populated subject (including groups)
- add SecurityActions within the rest code
- Return 403 forbidden where needed


...
 REST endpoint authorization
 ---------------------------

                 Key: ISPN-8736
                 URL: https://issues.jboss.org/browse/ISPN-8736
             Project: Infinispan
          Issue Type: Enhancement
          Components: REST, Security, Server
            Reporter: Tristan Tarrant
            Assignee: Tristan Tarrant
            Priority: Major

 The REST endpoint does not use the authenticated user to access authz caches. We need
to:
 - integrate with the ServerAuthenticationProvider as used by the Hot Rod endpoint so that
we can use security callbacks and retrieve a fully populated subject (including groups).
This should ultimately connect with Elytron.
 - add SecurityActions within the rest code
 - Return 403 forbidden where needed 


--
This message was sent by Atlassian Jira
(v7.12.1#712002)

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009