Details

    • Type: Task
    • Status: Merged (View workflow)
    • Priority: unspecified
    • Resolution: Ready for Release
    • Affects Version/s: None
    • Fix Version/s: platform-4.0.0
    • Component/s: None
    • Labels:
      None
    • Tested Version/s:
      None
    • Sprint:
      16.10, 16.11, 16.12, 16.13, 16.14
    • Story Points:
      5

      Description

      • Zanata should serves as authorization server
      • REST services should recognise OAuth access token - as an alternative for API key
      • Not considering JWT in this implementation
      • System property (disabled by default) to disable OAuth
      • System property for the timeout for access token
      • Needs to be tested from end to end, e.g. mock/existing client

      Future tasks:

      • URI for client id
      • Page for user to revoke access
      • Page for admin to review OAuth tokens
      • JWT for token
      • Pre-registered client to Zanata

        Attachments

          Issue links

            Activity

              People

              • Assignee:
                pahuang Patrick Huang
                Reporter:
                aeng Alex Eng
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: