Add restricted bucket token auth (!18) · Merge requests · leap / menshen

Max B requested to merge maxb/token-spike into main Feb 16, 2024

This is a first pass at adding the ability to restrict access to "buckets" of resources via an auth token header.

This adds a storage layer with sqlite. There's currently no functionality for adding access tokens through the codebase so they have to be manually added via the sqlite command line.

It is backwards compatible because resources without a "bucket" tag are considered public so there should be no change in functionality for deployments.

Remaining to-dos (which might or might not block merging this particular MR):

Updating README
Adding an endpoint or command line script for adding auth tokens
Figuring out how resources would be assigned buckets from the deployment (lilypad->menshen) pipeline
????
profit

Edited Mar 05, 2024 by Max B

Add restricted bucket token auth

Merge request reports