Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement AuthN/AuthZ for Helium using AAD #4

Open
6 tasks
aka-msft opened this issue Jun 18, 2019 · 0 comments
Open
6 tasks

Implement AuthN/AuthZ for Helium using AAD #4

aka-msft opened this issue Jun 18, 2019 · 0 comments

Comments

@aka-msft
Copy link
Owner

Description

After Helium v1 is complete, update repository and add authentication and authorization to API endpoints.

Tasks

  • Fork/update helium repo
  • Establish requirements for groups and users that can access each Helium endpoint and verb (GET, POST, DELETE, etc.)
  • Create groups + users in AAD (admin + regular users)
  • Create a config file to map users to endpoints/verbs they're allowed access to
  • Create middleware that checks if the user's token is valid and whether they have access to the endpoint/verb.
  • Write tests for secured endpoints

Done

All Helium endpoints are secured with AAD, and tests are in place to verify security of endpoints.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@aka-msft