[ https://issues.apache.org/jira/browse/FLINK-21108?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17274435#comment-17274435 ]
Till Rohrmann commented on FLINK-21108: --------------------------------------- How do other authentication methods work? I just wanna avoid that we design a feature which we cannot extend in this direction. If it just means obtaining somewhere else a token and adding it to a header, then this should be fine I guess. > Flink runtime rest server and history server webmonitor do not require > authentication. > -------------------------------------------------------------------------------------- > > Key: FLINK-21108 > URL: https://issues.apache.org/jira/browse/FLINK-21108 > Project: Flink > Issue Type: New Feature > Components: Runtime / REST, Runtime / Web Frontend > Reporter: Xiaoguang Sun > Priority: Major > Labels: pull-request-available > > Flink runtime rest server and history server webmonitor do not require > authentication. At certain scenarios, prohibiting unauthorized access is > desired. Http basic authentication can be used here. -- This message was sent by Atlassian Jira (v8.3.4#803005)