Versions Compared

Old Version 4

changes.mady.by.user Mikhail Pochatkin

Saved on

compared with

New Version 5

changes.mady.by.user Mikhail Pochatkin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

In case when authentication fails, CLI should map a REST response with a failed reason and show to the user formatted message with details. This mechanism already exist and using in different situations in CLI.

Thin client

Micronaut

Also, we need to make some changes on the server side: 

  • Add @Secured(SecurityRule.IS_AUTHENTICATED) annotation to controllers
  • Implement AuthenticationProvider

See https://guides.micronaut.io/latest/micronaut-security-basicauth-gradle-java.html.

Code Block
"security": {
    "rest": {
        "auth": {
            "enabled": true,
            "basic": {
                "login": "string",
                "password": "string"
             }
        }
    }
}

Client Authentication

Server

ClientInboundMessageHandler handler should

...

  1. Client posts the client-id and client-secret to the token endpoint URL using specified authentication type and receives an access token or error message. At this point implementation should cache the token.
  2. Client sends the access token to the REST API endpoint using the client_secret_basic authentication type.
  3. REST API implementation validates the token using the JWKS URL.

Micronaut

Also, we need to make some changes on the server side: 

  • Add @Secured(SecurityRule.IS_AUTHENTICATED) annotation to controllers
  • Implement AuthenticationProvider

See https://guides.micronaut.io/latest/micronaut-security-basicauth-gradle-java.html.

Code Block
"security": {
    "rest": {
        "auth": {
            "enabled": true,
            "basic": {
                "login": "string",
                "password": "string"
             }
        }
    }
}

Tickets


[IGNITE-19597] Ignite3 Basic Authentication Support - ASF JIRA (apache.org)


...