Uploaded image for project: 'Service Packs and Hot Fixes'
  1. Service Packs and Hot Fixes
  2. MNT-21029

[APS] Add other auth configurations to REST Task

    Details

    • Type: Improvement
    • Status: Need Info
    • Resolution: Unresolved
    • Affects Version/s: Alfresco Process Services 1.9.0.5
    • Fix Version/s: None
    • Component/s: APS Tasks
    • Labels:
      None
    • Bug Priority:
      Category 4
    • ACT Numbers:

      00992928

      Description

      Summary

      Currently the OOTB REST Task only allows basic auth (HTTP). You set endpoints and set basicauth username/password:

      • IDM tenant endpoint config
      • editor process REST task config

      Ref: https://docs.alfresco.com/process-services1.9/topics/rest_call_task.html

      Customer needs to make call to endpoint that requires HTTPS would need cert for client.

      Request is to extend the REST task and IDM endpoint credentials to at least provide https urls for endpoints as well as the client cert config for the named credentials for that end point

      This is major issue with security of REST calls to external sources. They improvement request is for extension of the REST task to afford the use of https calls and ability to store/select cert for auth user used.

      Suggested improvement:

      • add an additional table in IDM to provide SSL auth credentials (assume doman based certs)
      • add an additional table to select and store cert (domain based)
      • add selection of http/https protocol when configuring endpoint

      Business Case

      Majority of external endpoints for REST calls are secured, at minimum need to be able to configure use of appropriate client/cert credentials to access.

        Attachments

        1. exRestTaskConfig.png
          exRestTaskConfig.png
          96 kB
        2. exRestTaskConfig-Mod.png
          exRestTaskConfig-Mod.png
          78 kB
        3. IDM-Tenant-Endpoints.png
          IDM-Tenant-Endpoints.png
          104 kB
        4. IDM-Tenant-Endpoints-Mod.png
          IDM-Tenant-Endpoints-Mod.png
          152 kB

          Structure

            Activity

              People

              • Assignee:
                mhowarth Mark Howarth [X] (Inactive)
                Reporter:
                jsoria Jennie Soria [X] (Inactive)
              • Votes:
                1 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:

                  Structure Helper Panel