Nathan Lie
Nathan Lie
## Changes proposed in this pull request - Adds middleware to the `backend` Admin Server that validates a signature comprised of a timestamp and a HMAC digest of the request...
## Context To follow established patterns in other services and use a low-overhead solution, it has been decided to secure the Admin API with an HMAC signature, using a shared...
## Context With the Admin API secured in https://github.com/interledger/rafiki/pull/2466, the Bruno collection should ideally be able to support getting the Hydra auth token and include it in requests to the...
Sub-Issue of #2218
https://datatracker.ietf.org/doc/html/draft-ietf-gnap-core-protocol-15#name-completing-interaction-with- Add the "push" interaction finish method to the Rafiki Auth Server, which has the AS make a POST request to a URL specified by the client in the initial...
## Changes proposed in this pull request - Added signature header verification to Auth Server Admin API ## Context Closes #2704. ## Checklist - [x] Related issues linked using `fixes...
As was done with the [backend server's admin API](https://github.com/interledger/rafiki/pull/2632), the auth server's admin API needs to be secured in the same way.
## Changes proposed in this pull request - Adds logging to route handlers on the auth server - Includes request method, path, and a unique request id in each log...
## Changes proposed in this pull request - Updated the Admin UI with the following: - Changed `Webhook` to `Webhook Data`. - Swapped `Asset` and `Peer` tabs. - Added tooltips...