Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

secured routes for adding allow/denylist #128

Open
alexandermichels opened this issue Jul 25, 2024 · 0 comments
Open

secured routes for adding allow/denylist #128

alexandermichels opened this issue Jul 25, 2024 · 0 comments

Comments

@alexandermichels
Copy link
Member

This depends on #127, but the idea would be to create secured routes (not using the JupyterHub auth) for adding users to the allowlist/denylist solution. The solution should have all of the parameters in the URL so that we can provide HPC facilitators with simple links to approve/deny.

An initial thought would be to generate a random string that we match against in the request to secure it. I'm imagining we format the route such that we can send HPC admins a link like:

[Compute server]/v2/:userId/add-allow?hpc=[HPC_RESOURCE]&key=[RANDOMLY_GENERATED STRING]

Open to better solutions though
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@alexandermichels