Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-8618

Allow to protect REST Endpoints in OpenAM

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: 13.0.0, 14.1.1, 5.5.1, 6.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.0.0.4, 6.0.0.5, 6.5.0, 6.0.0.6, 6.5.0.1, 6.0.0.7, 6.5.1, 6.5.0.2, 6.5.2, 6.5.2.1, 6.5.2.2, 6.5.2.3, 5.5.2
    • Fix Version/s: None
    • Component/s: rest
    • Labels:
    • Support Ticket IDs:

      Description

      The currently existing OpenAM REST endpoints are not protected from client access, basically anyone is able to access them as long as they have the necessary input data present for the REST endpoints.

      It should be possible to configure CAF filters in front of the endpoints to ensure that only trusted clients can perform operations.
      One preferred solution would be to allow 2-way SSL authentication for these endpoints.

      This may include client IP access and specific user access restrictions (if they have a valid token) for example

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              darshan.bhatt Darshan Bhatt [X] (Inactive)
            • Votes:
              1 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

              • Created:
                Updated: