New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

new recipe: multitenant API with client controlled authorization structure #39

Open

Geal opened this issue Apr 8, 2022 · 0 comments

Contributor

Geal commented Apr 8, 2022

This recipe describes a design I did for Clever Cloud's Pulsar cluster:

the cluster enforces some basic rules on every request
each customer has their own namespace inside the cluster
each customer receives a token with full access to the namespace
they can then attenuate the token to use in specific applications. Examples:
- an agent that can only produce on a specific topic
- an application that consumes on topic A and produces on topic B, nothing more
- temporary access to subscribe to a topic

I'd like to have a page describing that use case, possibly expanding to more complex authorization structures on the customer's side

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment