[Feature]: Support OTLP Authentication

[rmarasigan]

Requirement

As a Jaeger user, I think adding the functionality of "auth" under the Jaeger Collector OTLP would be nice to have.

So when the OpenTelemetry Collector tries to communicate with the Jaeger Collector OTLP endpoint it will require it to export the trace data with authentication. It can be optional tho.

Here are some sample auth that is nice to have:

• basicauthextension
• oidcauthextension

Problem

When the OpenTelemetry Collector is exporting the traces to the Jaeger Collector, we wanted somehow the OTLP Endpoint to have an authentication so there will be limited access to the said endpoint and in a more secure way. But right now, it just directly exports our data to the Jaeger Endpoint without any authentication which might cause some security issues.

Proposal

No response

Open questions

No response

[psk001]

Hi @yurishkuro , is this issue still open, if yes may I proceed further?

[yurishkuro]

Go ahead. My preference would be to not implement anything but check if OTEL Collector's receiver already supports auth. If it does not, I would not implement it in Jaeger either.

[psk001]

Cool , I'll move as suggested

[psk001]

As mentioned in openetelemtry collector contrib, here , opentelemetry receiver supports http authentication using username and password. Also the discussion here and here have explanations.

[psk001]

What is the way forward for this @yurishkuro ?

[varshith257]

@yurishkuro OTEL Collector's receiver Implemented HTTP Basic server auth. I think we are ready to go. Can I work on this?

[fcuello-fudo]

Are there any plans to add oidc as well?

[yurishkuro]

Jaeger v2 uses OTLP receivers from OTEL collector, so we support the same features. We are not going to add new ones to jaeger v1.