Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[FEAT] Add optional user auth backend #5

Open
NeonDaniel opened this issue Dec 13, 2021 · 3 comments
Open

[FEAT] Add optional user auth backend #5

NeonDaniel opened this issue Dec 13, 2021 · 3 comments
Labels
enhancement New feature or request

Comments

@NeonDaniel
Copy link
Member

NeonDaniel commented Dec 13, 2021

Objective

Implement some optional authentication methods for HTTP endpoint access. Consider offering more requests for logged in users and possibly requiring real authorized user accounts for access to Neon endpoints.

Initial Implementation requirements

  • Allow minimal option with a single username and password (hash?) from config
  • Allow for login via external oauth provider

Other Considerations

  • Eventually, we may require some kind of user login for Neon applications (i.e. no default free access)
  • Any implementation here should be optional for self-hosted instances that don't need the added complexity
  • Rate limits might be adjusted for different routes
@NeonDaniel NeonDaniel transferred this issue from NeonGeckoCom/neon-diana-utils Jan 22, 2024
@NeonDaniel NeonDaniel changed the title Add Some form of user auth to backend Add optional user auth backend Jan 23, 2024
@NeonDaniel NeonDaniel changed the title Add optional user auth backend [FEAT] Add optional user auth backend Jan 23, 2024
@NeonDaniel
Copy link
Member Author

The authentication here may also define different levels of skill access per-user

@NeonDaniel
Copy link
Member Author

NeonDaniel commented Jan 27, 2024

One option here is to hook into the klatapi endpoint to authenticate with that existing user db. We can also extend those profiles to store additional user params for settings/authorization

@NeonDaniel NeonDaniel added the enhancement New feature or request label May 15, 2024
@NeonDaniel
Copy link
Member Author

Some specific areas that may be individually permissioned:

  • assist endpoints
  • backend endpoints
  • llm endpoints (consider split from backend)
  • node endpoints (currently the only endpoints behind any auth)

Related to #31: Exposing other services through HANA would allow for unified permissions management

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

1 participant