Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Integrate with Helidon Security #4

Open
aseovic opened this issue Feb 12, 2020 · 0 comments
Open

Integrate with Helidon Security #4

aseovic opened this issue Feb 12, 2020 · 0 comments
Assignees
@thegridman
Labels
enhancement New feature or request good first issue Good for newcomers help wanted Extra attention is needed

Comments

@aseovic
Copy link
Contributor

aseovic commented Feb 12, 2020

At the moment the security is basically non-existent. The user needs to log in to place an order, but as long as you know user's ID you can access any information related to that user (cart, address, credit card info, etc.) without any authentication or authorization at the service level.

We need to enable Helidon Security for various resources that should be protected (user info, carts, etc.) so only logged in user (based on the cookie provided by the front-end service) or admin can access protected operations and data they provide.
@aseovic aseovic added enhancement New feature or request good first issue Good for newcomers help wanted Extra attention is needed labels Feb 12, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@thegridman thegridman

Labels
enhancement New feature or request good first issue Good for newcomers help wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@aseovic @thegridman