Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow external authentication on a reverse proxy #73

Closed
To-om opened this issue Nov 14, 2018 · 2 comments
Closed

Allow external authentication on a reverse proxy #73

To-om opened this issue Nov 14, 2018 · 2 comments
Assignees
@To-om
Labels
enhancement
Milestone
1.7.0

Comments

@To-om
Copy link
Contributor

To-om commented Nov 14, 2018

This feature allow to delegate authentication to a reverse proxy, in front of the application. The user identity is forwarded using HTTP header.
This feature is enabled by adding auth.method.header = true in application.conf. Then the name of the header must be set by auth.header.name = AUTH_USER

This feature may imply security flaw if an user can contact TheHive directly. He would be able to set the configured header and choose his identity. Before enabling this feature, it is important to be sure that only the reverse proxy can contact the application.
@To-om To-om added this to the 1.7.0 milestone Nov 14, 2018
@To-om To-om self-assigned this Nov 14, 2018
To-om added a commit that referenced this issue Nov 14, 2018
@To-om
#73 Allow to identify user using an HTTP header
f2db3d4
@To-om To-om closed this as completed Nov 14, 2018
@To-om To-om mentioned this issue Nov 29, 2018
Closed
@zmaktouf
Copy link

Hi, Is this also available for Cortex?

@zmaktouf zmaktouf mentioned this issue Apr 18, 2020
Closed
@To-om
Copy link
Contributor Author

To-om commented Apr 19, 2020

yes

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@To-om To-om

Labels
enhancement
Projects
None yet
Milestone
1.7.0
Development

No branches or pull requests
2 participants
@zmaktouf @To-om