[
https://issues.apache.org/jira/browse/UNOMI-393?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Serge Huber updated UNOMI-393:
------------------------------
Description:
We should implement something similar to the way the REST API protects
resources:
https://github.com/apache/unomi/blob/master/rest/src/main/java/org/apache/unomi/rest/authentication/impl/DefaultRestAuthenticationConfig.java
The idea is that no authentication should be needed for the following
operations:
- Send events
- Retrieve current profile
All other queries and mutations should be protected by BASIC auth using the
same realm as the REST API.
was:
We should implement something similar to the way the REST API protects
resources:
https://github.com/apache/unomi/blob/master/rest/src/main/java/org/apache/unomi/rest/authentication/impl/DefaultRestAuthenticationConfig.java
> Implement default field visibility provider that allows sending events and
> retrieving current profile
> -----------------------------------------------------------------------------------------------------
>
> Key: UNOMI-393
> URL: https://issues.apache.org/jira/browse/UNOMI-393
> Project: Apache Unomi
> Issue Type: Sub-task
> Reporter: Serge Huber
> Assignee: Pavel Milkevich
> Priority: Major
> Fix For: 2.0.0
>
>
> We should implement something similar to the way the REST API protects
> resources:
> https://github.com/apache/unomi/blob/master/rest/src/main/java/org/apache/unomi/rest/authentication/impl/DefaultRestAuthenticationConfig.java
> The idea is that no authentication should be needed for the following
> operations:
> - Send events
> - Retrieve current profile
> All other queries and mutations should be protected by BASIC auth using the
> same realm as the REST API.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
