Skip to content

Enforce authentication in the API #63

New issue
New issue
Closed
Closed
Enforce authentication in the API#63
Labels
enhancementNew feature or requestgood first issueGood for newcomerssecurityFeatures related to authentication and authorization or any sort of security measure.
@EliuX

Description

@EliuX
EliuX
opened on Apr 2, 2020

As it was mentioned in our Slack channel, we should be able to enforce authentication to our API using JWT. Basically all we need for the JWT generation/verification/refreshment is

{
  "authority": "https://securityioet.b2clogin.com/securityioet.onmicrosoft.com/B2C_1_securityioetweb",
  "client_id": "b7e72a5b-c054-4bf8-99e7-f11bbf99a6b1",
  "scopes": ["https://securityioet.onmicrosoft.com/login"]
 }

TODO:
We need to make that only authenticated users can call the api

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or requestgood first issueGood for newcomerssecurityFeatures related to authentication and authorization or any sort of security measure.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions