Faas: Proposal: Basic Auth

Created on 28 Mar 2017  路  8Comments  路  Source: openfaas/faas

It would be great to have a basic security on admin ui and / or function call

Expected Behavior

The goal would be to provide an API token to enble basic security on gateway UI access and function call.

Current Behavior



There is no security to access gateway UI or call a function. Anybody that have access to ui can add a function.

Possible Solution

Add an API key for each call to gateway UI to secure access.
Add an generated API key for each function in order to secure access to them

see https://foobar123.com/serverless-security-594942b496ec

enhancement

Most helpful comment

Implemented and released in a guide.

All 8 comments

This is on the roadmap and makes sense.

I'm not sure if a header/key can be used through a web-browser, but basic auth over SSL may serve this purpose?

I'm not a developer, but this seems not so difficult to implement
https://github.com/graze/golang-service/blob/master/handlers/auth/README.md

Related -> #36

Thanks a lot, now we can add protection inside function.Maybe another option, is to do protection on the gateway directly.

API KEY are defined on the gateway for each function.

See also my blog post on swarm secrets with Github. http://blog.alexellis.io/swarm-secrets-in-action/

Have you created any of your own functions yet? Any other ideas/feedback will be appreciated. :-)

@edouardkleinhans this can be done by putting Kong in front of your API gateway.

Implemented and released in a guide.

Was this page helpful?
0 / 5 - 0 ratings