Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Authentication and security in Theia IDE #9383

Closed
20 tasks done
slemeur opened this issue Apr 11, 2018 · 4 comments
Closed
20 tasks done

Authentication and security in Theia IDE #9383

slemeur opened this issue Apr 11, 2018 · 4 comments
Labels
kind/epic A long-lived, PM-driven feature request. Must include a checklist of items that must be completed.

Comments

@slemeur
Copy link
Contributor

slemeur commented Apr 11, 2018

Description

Communications between Theia integrated within Che and Che Server as well as workspace's containers should be secured.

Sub-tasks

@slemeur slemeur added the kind/epic A long-lived, PM-driven feature request. Must include a checklist of items that must be completed. label Apr 11, 2018
@skabashnyuk
Copy link
Contributor

skabashnyuk commented Apr 12, 2018

I see such points here.

  • we should have some sort of request factory that can add tokens to request headers
  • we should add a component to get token in case if a header is not an option (example initial OAuth request, file upload, javadocs url)
  • we should protect our infrastructure with some software that checks tokens. I would like to try https://github.com/coreos/jwtproxy in this role.

@garagatyi
Copy link

Note that we also need a guide for plugins/features/LSs developers.

@slemeur
Copy link
Contributor Author

slemeur commented Apr 12, 2018

Thanks @skabashnyuk and @garagatyi ! Adding to the issue description.

@skabashnyuk
Copy link
Contributor

This epic complete for OS/K8s infrastructure.
Docker infrastructure would be covered under this issue #10242

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
kind/epic A long-lived, PM-driven feature request. Must include a checklist of items that must be completed.
Projects
None yet
Development

No branches or pull requests

3 participants