Authentication

[mcupak]

Add authentication layer based on OpenID Connect/OAUTH 2. The easiest way would be to use an adapter with Keycloak, an external authentication server.

Other relevant links:

• Sample authenticated beacon

[patmagee]

Should this be included in the BDK? Authentication and authorization implementation seem like something that should be dictated by the container and the user,Not the BDK itself

[mcupak]

Fair point, and I agree it shouldn't be forced by the BDK. However, we want to have an application bundling auth(z) for quickstart, demonstration and testing purposes. Authentication should either be very non-intrusive (lightweight, easy to turn on/off), or we can prepare a separate bundle (application) built on top of this BDK.

[patmagee]

                                                                                  I think the best option would be to inclue this in a separate repository. Authz should not be part of the BDK. That's more of a sample implementation, which could be harder to remove if the end user does not want it                                                                                                                                                                                                                                                                                                                                        Sent from my BlackBerry 10 smartphone on the Bell network.                                                                                                                                                                                                                From: Miro CupakSent: Saturday, June 18, 2016 12:18 AMTo: mcupak/beacon-javaReply To: mcupak/beacon-javaCc: Patrick Magee; CommentSubject: Re: [mcupak/beacon-java] Authentication (#5)Fair point, and I agree it shouldn't be forced by the BDK. However, we want to have an application bundling auth(z) for quickstart, demonstration and testing purposes. Authentication should either be very non-intrusive (lightweight, easy to turn on/off), or we can prepare a separate bundle (application) built on top of this BDK.

—You are receiving this because you commented.Reply to this email directly, view it on GitHub, or mute the thread.