Question: Authentication
Stephanevg opened this issue · 10 comments
Hi @Tiberriver256 / @TylerLeonhardt
I was scanning your documentation summary for information on 'Authentication'. Unfortunatley, I couldn't find a topic called like that (Perhaps it is simply hidden somwhere else?).
I was trying to figure out if it was possible to handle some authentication stuff (like, this member of this AD group, cannot access to this route).
I think I read something in that direction once, and couldn't find it. Would you mind pointing me in the right direction?
Thanks
#Stéphane
Hey Stephane,
Looks like another gap in the docs. I'll write something up here shortly.
I'm looking forward reading it too! ;-)
Hey @Tiberriver256 , I was planning to this one at work in a few. Is there something I can look into ? (Even a draft would be do the trick)
I think we can implement the auth by ourselves by checking the headers in a middleware, and let Polaris as light as possible.
You folks may want to look at Pode which seems a bit further along in this space than Polaris
Cc @Badgerati
I started up a short draft here that should be enough to get you started:
Why you saying that @TylerLeonhardt?
Does Polaris doesn't has support for authentication?
Hey!
As per @Tiberriver256 draft, it's definitely possible to do this in Polaris with Window's AD and have group validation.
Where Pode is bit further ahead, is that Polaris does its authentication via HttpListener, where as Pode is independent and has its own authentication logic using middleware (making it easier to have custom authentication strategies, or when implementing against AWS/Azure Functions).
@Stephanevg - Check out PR #192 and let me know what you think of the docs.
Hi @Tiberriver256 Yeah, that looks perfect. It will allow people to get started with it!
Thanks for updating it :)
('ill close this one once it i merged)