Skip to content

Allow passing opaque credentials for auth plugins in the /authorize API #1493

New issue
New issue
Open
Story
Open
Allow passing opaque credentials for auth plugins in the /authorize API#1493
Story
Labels
comp:clientRelated to Client componentcomp:managerRelated to Manager componentcomp:webserverRelated to Web Server componenturgency:3Must be finished within a certain time frame.
Milestone
 
23.09
@achimnol

Description

@achimnol
achimnol
opened on Aug 18, 2023

We often need to implement a site-specific authentication hook plugin for the manager which accepts arbitrarily-formatted authentication data from 3rd parties.

Let's:

  • Add an "opaque" mode (e.g., ?mode=opaque) to the /authorize manager API so that it just accepts arbitrary query parameters and body content so that any internally installed auth-hook plugins could apply custom processing of them.
  • Update the client SDK's functional API, User.authorize() to support this opaque mode as well.
  • Add support for the opaque mode in the webserver as well using the updated client.

I think it would be good enough to have a branch to apply different trafaret depending on the "mode" query parameter (which fallbacks to the "email", the current impl.).

This is a refactoring of #1478 and lablup/backend.ai-webui#1862.

Activity

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Assignees

No one assigned

    Labels

    comp:clientRelated to Client componentcomp:managerRelated to Manager componentcomp:webserverRelated to Web Server componenturgency:3Must be finished within a certain time frame.

    Type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions