Hi, is there a way to configure what header is rea...
# pact-brokerm
Mustafa Siyaj
08/18/2022, 10:10 PMHi, is there a way to configure what header is read for basic authorization? We would love if there is an environment variable for this… We are behind a gateway that is renaming our
Authorizationm
Matt (pactflow.io / pact-js / pact-go)
08/18/2022, 10:13 PM
No, basic auth is an RFC standard. if you have auth on the gateway, why not do auth there?
m
Mustafa Siyaj
08/19/2022, 1:08 PMbasic isn’t one of the options 🙂
m
Matt (pactflow.io / pact-js / pact-go)
08/19/2022, 2:57 PM
Why do you have auth on the gateway?
Matt (pactflow.io / pact-js / pact-go)
08/19/2022, 2:58 PM
I guess I'm saying, if you're adding another auth layer how will all of the pact client tooling know how to send two different authentication headers?
Matt (pactflow.io / pact-js / pact-go)
08/19/2022, 2:59 PM
Is basic with required if you have gateway auth?
You could implement a custom auth layer that has basic rules in place, and then just disable basic auth on the broker?
Matt (pactflow.io / pact-js / pact-go)
08/19/2022, 3:00 PM
If security like this is important, you might want to look at Pactflow which has proper security, user management and RBAC. We have a cloud and on prem version
3 Views