Comments (6)
One question out of curiosity: Will this feature be developed fully from scratch or any plan to integrate pre-build libraries like supertokens etc?
@AmreeshTyagi Probably both industry-standard tools and enhancements of ours
from memphis.
Hi @yanivbh1,
TLDR; we would like to forward authentication requests against ur own backend using HTTPS. The backend should reply if user credentials (eg. a JWT) is valid and a list of permissions for sub/pub.
I smioultaniously had a conversation at the end of this nats-io/nats-server#434 (comment). It actually shows best what other and we were asking for in the last 5 years.
Another good example we are using right now is: https://github.com/rabbitmq/rabbitmq-auth-backend-http
@john-dev Yes, for sure! Basically, equip your users with a JWT token that has enough secure resolution so they would be able to reach Memphis directly to specifically allocated resources.
It's coming. I'll update this thread during the building.
from memphis.
TLDR; enable external authentication & authorization
We tested memphis multiple times and always came down to the fact that we miss this feature.
Something that we have seen being requested multiple times for Nats but has not been taken into consideration yet:
external authentication & authorization
We connect clients (browser + thick app) directly to our current message bus workflow to use the full power of it across our platform which makes it absolutely crucial to enable external authentication (through our platform) and authorization per exchange (we use RabbitMQ).
We use it to distribute requests to all kind of clients, specially to update webinterfaces after changeing prefs, receiving new messages etc.
from memphis.
Hey @john-dev,
Definitely in the making, and I am happy to read that you want to make it work with Memphis.
When you say external authentication & auth, to which provider/method/protocols are you referring?
Regarding connecting clients directly to your message bus - That's fantastic, and we also work on a similar use case with other users. We are heading towards a) allowing dedicated identity and cert to each client. b) to enable data-level context so based on the produced data, you could define which consumers are eligible to connect. c) Layers of authorizations, groups, and policies.
Any more specific capabilities that I didn't list?
from memphis.
One question out of curiosity: Will this feature be developed fully from scratch or any plan to integrate pre-build libraries like supertokens etc?
from memphis.
Hi @yanivbh1,
TLDR; we would like to forward authentication requests against ur own backend using HTTPS.
The backend should reply if user credentials (eg. a JWT) is valid and a list of permissions for sub/pub.
I smioultaniously had a conversation at the end of this nats-io/nats-server#434 (comment).
It actually shows best what other and we were asking for in the last 5 years.
Another good example we are using right now is:
https://github.com/rabbitmq/rabbitmq-auth-backend-http
from memphis.
Related Issues (20)
- Feature: Annonymous login HOT 1
- Bug: Visualization issues in the OS integration center
- Feature: Add Memphis broker to Dapr HOT 3
- Feature: Purge messages via the SDKs
- Feature request: Search bar HOT 9
- Graph overview
- Function: Filter events based on specific payload
- [Enhancement]: Migrating React UI from react-router v5 to v6
- Feature: Per Message Max Delivery Policy HOT 1
- Feature: Prepare "Memphis Protocol Binding for Cloud Events"
- Feature: Producer Throttling HOT 1
- Feature: resizeable gui elements HOT 1
- Feature: Auto retry on failing to talk to memphis HOT 2
- Bug: Bad error message
- Feature: Outbound Integrations HOT 4
- Feature: Exponential backoff retry for consuming messages
- Bug: Failure while trying to convert JSON to protobuf with Schemaverse
- memphis-rest-adapter repository HOT 1
- Feature: Create memphisphp repository HOT 1
- Bug: No field to add password while creating user HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from memphis.