Open
Description
As we are doing now by managing API access with JWT tokens and Roles Based Acess, we need to allow users access APIs by providing apiKey and apiSecret credentials in the incoming request.
We suppose storing those keys in the way they should encode the role and in specific case the tenantId.
Note :
- If those key are associated to some
tenantId, It means they can access API only for that specific Tenant - Otherwise, it means it's global access keys, and it can run any API operations
Metadata
Metadata
Assignees
Labels
No labels