Sandor Molnar created KNOX-2792:
-----------------------------------
Summary: New Knox service to add custom auth headers in the
response
Key: KNOX-2792
URL: https://issues.apache.org/jira/browse/KNOX-2792
Project: Apache Knox
Issue Type: Sub-task
Components: Server
Reporter: Sandor Molnar
Assignee: Sandor Molnar
Fix For: 2.0.0
A simple REST service is needed to perform centralized authentication and
authorization of incoming requests. Combined with nginx's external
authentication capability it allows for every request to be checked for valid
authentication before being forwarded to the upstream service.
If a valid principal is found, a header is added to the response, by default
{{X-Knox-Actor-ID}}, with the principal. In addition, if the authenticated
subject has groups, these are added into comma-separated headers of the default
form {{X-Knox-Actor-Groups-num}}. Each group header has a character limit of
1000 to keep them reasonably sized. The header names can be customized via
configuration properties.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
