[
https://issues.apache.org/jira/browse/CASSSIDECAR-161?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17914412#comment-17914412
]
Francisco Guerrero commented on CASSSIDECAR-161:
------------------------------------------------
+1 thanks for the patch
> Add RBAC Authorization support in Sidecar
> -----------------------------------------
>
> Key: CASSSIDECAR-161
> URL: https://issues.apache.org/jira/browse/CASSSIDECAR-161
> Project: Sidecar for Apache Cassandra
> Issue Type: New Feature
> Components: Configuration
> Reporter: Saranya Krishnakumar
> Assignee: Saranya Krishnakumar
> Priority: Normal
> Time Spent: 18h 40m
> Remaining Estimate: 0h
>
> Sidecar has authentication support, we should also add authorization support
> for enhanced security. This JIRA proposes adding RBAC (role based access
> control) authorization in Sidecar. AuthorizationHandler is to be chained
> after the ChainAuthHandler. It will check for permissions of authenticated
> user. For role based access control, Sidecar should honor permissions stored
> in Cassandra. For custom endpoint level permissions that are not found in
> Cassandra, Sidecar should fall back to referring permissions stored in its
> configuration.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
