mik-laj commented on issue #11305: URL: https://github.com/apache/airflow/issues/11305#issuecomment-1127341502
> When request is received within airflow will the user be already authenticated with Pomerium? i.e. When validating request in the auth backend, should the code directly look for the header X-Pomerium-Jwt-Assertion or the request would contain credentials which the code should authenticate with pomerium first? I have no experience with this platform, but a non-privileged user should not be able to log in and this is the main requirement. > Let me know if this is okay and what criteria is used to pin a requirement to a particular version. We should create a new provider and define all requirements explicitly. Here is our doc about dependencies and upper-bound version of Airflow dependencies: https://github.com/apache/airflow#approach-to-dependencies-of-airflow lower bound should point to the version you are currently testing. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
