api-components-bundle icon indicating copy to clipboard operation
api-components-bundle copied to clipboard

Published 20 hours ago verified publisher icon components-web-app

Secure mercure

Open silverbackdan opened this issue 4 years ago • 1 comments

https://gist.github.com/soyuka/5deae36cf0fa348c4225985f6a073efe

May not need to replace PublishMercureUpdatesListener

Add configuration to list all the resources we want to secure... or possible quick config to secure all.

silverbackdan avatar Jun 10 '20 08:06 silverbackdan

A system is in place for mercure auth tokens and jwt with subscribe topics. This is more generic. Will need to be addressed if for example a dev wants User entities to be published on mercure and only allow subscribing to their own or who has access for these changes

silverbackdan avatar Oct 25 '22 17:10 silverbackdan