[
https://issues.apache.org/jira/browse/CASSSIDECAR-161?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Saranya Krishnakumar updated CASSSIDECAR-161:
---------------------------------------------
Authors: Raymond Welgosh, Saranya Krishnakumar
Test and Documentation Plan: Tested with unit tests and integration tests
Status: Patch Available (was: Open)
patch: [https://github.com/apache/cassandra-sidecar/pull/165]
> Add RBAC Authorization support in Sidecar
> -----------------------------------------
>
> Key: CASSSIDECAR-161
> URL: https://issues.apache.org/jira/browse/CASSSIDECAR-161
> Project: Sidecar for Apache Cassandra
> Issue Type: New Feature
> Components: Configuration
> Reporter: Saranya Krishnakumar
> Assignee: Saranya Krishnakumar
> Priority: Normal
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Sidecar has authentication support, we should also add authorization support
> for enhanced security. This JIRA proposes adding RBAC (role based access
> control) authorization in Sidecar. AuthorizationHandler is to be chained
> after the ChainAuthHandler. It will check for permissions of authenticated
> user. For role based access control, Sidecar should honor permissions stored
> in Cassandra. For custom endpoint level permissions that are not found in
> Cassandra, Sidecar should fall back to referring permissions stored in its
> configuration.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
