Comments (1)
How are machines authorized and authenticated?
- We will use a two way oAuth process
- As external oAuth provider google, facebook and some more will be supported.
- As addition we will provide a own oAuth provider service, that will give the possibility to register and login with an "IUNO" Account directly on the marketplace.
- After a user has logged in with an external oAuth provider, we link this account to an internal user database.
- Internaly we use a seperated oAuth Service, that manages internal access tokens for users and resources.
- When ever a internal server like the JuiceMachineWebsite want's to access resources an the MarketplaceCore, he has to retrieve a access token from the internal oAuthService first.
- Within the oAuthService we will define scopes managing the access right for users and resources.
- The MarketplaceCore will check those scopes first, before accessing the database or starting a process.
- The last layer of security will be set on the database. Here we will bin resources and right to user ids.
- The scopes of the oAuth Service define, what rights a service were given by a user to access a resource.
- The database security defines, what resource belong to what user and who can actually access them
from juicemachineservice.
Related Issues (20)
- require a machine to authenticate itself using cmdongle
- Refactor and reformat error handling and logs
- Refactor Config
- Interface definition must match implementation
- Rename ingredients in recipe route
- Update swagger interface definitions
- Unstartup JMS
- Disable default nginx config
- Refactor Reports interface HOT 1
- Some Dashboard Reports are not working
- Proof while creating recipe if name already exists HOT 1
- JS Function "includes" not supported in IE
- Update swagger interface definitions
- Patch Verwaltung in Patch Files einbauen
- TechnologyData should be updateable HOT 1
- Socket.io authentication fails
- check client id for authenticity
- solve possible logjam vulnerability HOT 2
- secure all rest routes with brute force protection HOT 1
- Remove unused and sensible data from the recipe model
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from juicemachineservice.