-
Feature
-
Resolution: Unresolved
-
Major
-
None
-
None
Feature Overview
Implement authorization to secure API access for different user personas/actors in the agent-based installer.
User Personas:
- Read-Only Access: For "wait-for" and "monitor-add-nodes" commands.
- Read-Write Access: For systemd services and the agent service.
This isĀ
Goals
The agent-based installer APIs have implemented basic security measures through authentication, as covered in AGENT-145.
To further enhance security, it is crucial to implement user persona/actor-based authorization, allowing for differentiated access control, such as read-only or read-write permissions, based on the user's role.
The goal of this implementation is to provide a more robust and secure API framework, ensuring that users can only perform actions appropriate to their role.