Project

General

Profile

Actions

User story #10352

open

Client Certificate authentication + session for data source plugin

Added by François ARMAND almost 8 years ago. Updated about 1 year ago.

Status:
New
Priority:
N/A
Assignee:
-
Target version:
UX impact:
Suggestion strength:
Require - I need this to use Rudder as I intend
User visibility:
Infrequent - complex configurations | third party integrations
Effort required:
Medium
Name check:
Fix check:
Regression:

Description

For now, data sources plugin only allows authentication thanks to a header (token...)

An other common authentication scheme in API based solution is to use an SSL client certificate.

Most solutions also manage authentication based on a session flow, where a first request is done to a dedicated endpoint, tauthentication is done, some session token is returned to the client, and then that token must be reissued for each following requests of the session.

Both case can be implemented separatly (and the configuration screen must take care of that), but the protocol resulting in their merge is quite common and read like that:

  • given a server whose certificate is trusted,
  • the data sources client need to read its client certificate (and key/pass)
  • to issue an authenticated https request toward a dedicated endpoint on the server.
  • the server check ssl authentication and issue a session identifier (SID)
  • that session identifier must be issued in the following client request thanks to a dedicated header
  • (optionnal - the server must destroy session after some timeout in all cases) the client contact a dedicated endpoint on the server to notify the end of the session. SID is not valide anymore after that.
Actions #1

Updated by Jonathan CLARKE almost 8 years ago

  • Suggestion strength set to Require - I need this to use Rudder as I intend
  • User visibility set to Infrequent - complex configurations | third party integrations
  • Effort required set to Medium
Actions #2

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 4.1.0 to 4.1.1
Actions #3

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 4.1.1 to 4.1.2
Actions #4

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 4.1.2 to 4.1.3
Actions #5

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 4.1.3 to 4.1.4
Actions #6

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 4.1.4 to 4.1.5
Actions #7

Updated by Alexis Mousset over 7 years ago

  • Target version changed from 4.1.5 to 4.1.6
Actions #8

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 4.1.6 to 4.1.7
Actions #9

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 4.1.7 to 4.1.8
Actions #10

Updated by Vincent MEMBRÉ about 7 years ago

  • Target version changed from 4.1.8 to 4.1.9
Actions #11

Updated by Vincent MEMBRÉ about 7 years ago

  • Target version changed from 4.1.9 to 4.1.10
Actions #12

Updated by Benoît PECCATTE almost 7 years ago

  • Target version changed from 4.1.10 to Ideas (not version specific)
Actions #13

Updated by Vincent MEMBRÉ over 6 years ago

  • Project changed from Rudder to 54
  • Category deleted (71)
  • Target version changed from Ideas (not version specific) to 433
Actions #14

Updated by Vincent MEMBRÉ about 6 years ago

  • Project changed from 54 to Datasources
  • Target version changed from 433 to 4.1-1.3
Actions #15

Updated by Vincent MEMBRÉ over 1 year ago

  • Target version changed from 4.1-1.3 to 7.2
Actions #16

Updated by Alexis Mousset about 1 year ago

  • Target version changed from 7.2 to Ideas
Actions

Also available in: Atom PDF