Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Secure mercure #98

Open
silverbackdan opened this issue Jun 10, 2020 · 1 comment
Open

Secure mercure #98

silverbackdan opened this issue Jun 10, 2020 · 1 comment
Labels
bug Something isn't working enhancement New feature or request Hacktoberfest security security related

Comments

@silverbackdan
Copy link
Collaborator

https://gist.github.com/soyuka/5deae36cf0fa348c4225985f6a073efe

May not need to replace PublishMercureUpdatesListener

Add configuration to list all the resources we want to secure... or possible quick config to secure all.
@silverbackdan silverbackdan added the enhancement New feature or request label Jun 10, 2020
@silverbackdan silverbackdan added bug Something isn't working security security related labels Aug 12, 2022
@silverbackdan
Copy link
Collaborator Author

A system is in place for mercure auth tokens and jwt with subscribe topics. This is more generic.
Will need to be addressed if for example a dev wants User entities to be published on mercure and only allow subscribing to their own or who has access for these changes

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working enhancement New feature or request Hacktoberfest security security related
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@silverbackdan