[
https://issues.apache.org/jira/browse/CASSANDRASC-161?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Saranya Krishnakumar updated CASSANDRASC-161:
---------------------------------------------
Change Category: Operability
Complexity: Normal
Component/s: Configuration
Assignee: Saranya Krishnakumar
Status: Open (was: Triage Needed)
> Add RBAC Authorization support in Sidecar
> -----------------------------------------
>
> Key: CASSANDRASC-161
> URL: https://issues.apache.org/jira/browse/CASSANDRASC-161
> Project: Sidecar for Apache Cassandra
> Issue Type: New Feature
> Components: Configuration
> Reporter: Saranya Krishnakumar
> Assignee: Saranya Krishnakumar
> Priority: Normal
>
> Sidecar has authentication support, we should also add authorization support
> for enhanced security. This JIRA proposes adding RBAC (role based access
> control) authorization in Sidecar. AuthorizationHandler is to be chained
> after the ChainAuthHandler. It will check for permissions of authenticated
> user. For role based access control, Sidecar should honor permissions stored
> in Cassandra. For custom endpoint level permissions that are not found in
> Cassandra, Sidecar should fall back to referring permissions stored in its
> configuration.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]