add JAAS security doc #62
Conversation
- The doc covers the use of cryptography in JAAS, algorithms used and packages used.
kian99
requested review from
babakks,
alesstimec,
SimoneDutto,
ale8k and
pkulik0
and removed request for
babakks
reference/security.rst
Outdated
| ^^^^^^^^^^^^^^^^^ | ||
|
|
||
| JAAS does not currently enforce TLS when communicating with PostgreSQL. | ||
| But this can be achieved when using the PostgreSQL charm. |
There was a problem hiding this comment.
I would put this differently.
It is possible to achieve TLS by using the PostgresSQL charm and configure it properly by following https://charmhub.io/postgresql-k8s/docs/t-enable-tls
reference/security.rst
Outdated
| malicious use of your online credentials. Read more on CORS | ||
| `here <https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS#what_requests_use_cors>`__. | ||
|
|
||
| JAAS supports the use of CORS headers specifically for the purposes of the Juju |
There was a problem hiding this comment.
Do we want to add that CORS is not supported for WS communications?
There was a problem hiding this comment.
Yes I'll need to mention that.
- used LLM to simplify wording where possible
|
@babakks @SimoneDutto I was curious if an LLM could improve my wording and since these are public docs I tried it and was quite impressed with the changes. If you want, please take another look. The latest commit is purely the LLM changes after I went over them and accepted the changes I wanted, for example I wasn't happy with the changes to the Macaroon section so I left that one as is. I'll address your comments now. Many have already been solved. |
kian99
force-pushed
the
add-jaas-security-doc
branch
from
ae0dc2a to
1bbecc2
Compare
kian99
force-pushed
the
add-jaas-security-doc
branch
from
1bbecc2 to
5f84416
Compare
Description
This PR adds a doc titled "JAAS Security".
The doc covers any areas that are important to the security of JAAS.
Where relevant we cover the use of cryptography, algorithms used and packages used.
Resolves: CSS-9384