vertx-blueprint-microservice icon indicating copy to clipboard operation
vertx-blueprint-microservice copied to clipboard

Published 20 hours ago verified publisher icon sczyh30

Unprotected resource

Open mavencode01 opened this issue 8 years ago • 1 comments

Looks like the /api/* resources are not protected by keycloak

 router.route("/api/*").handler(this::dispatchRequests);

mavencode01 avatar Dec 22 '16 01:12 mavencode01

Yes we don't protect all of the /api/* resources(e.g. retrieve actions). We only protect some actions requiring authentication. Here we protect resource by using a wrapped callback requireLogin in RestAPIVerticle. You may also refer to authentication management section in the blueprint documentation.

sczyh30 avatar Jan 29 '17 12:01 sczyh30