Can I apply security authorization policy based on operations in SwitchYard?

Solution Verified - Updated -

Issue

  • Our project exposes a SwitchYard service with several operations. We have set up authorization to be required and is handled at FSW using the login-module.
  • We currently do not see any way to set authorization down to the SwitchYard operations. Please advice if this is supported.
  • In our SwitchYard project, under Domain, we have the security configuration setup with the Roles Allowed. This setup actually applies the Roles Allowed at the service level.
  • For example, in this service, we have 3 operations a, b, and c, and in Roles Allowed TEST_ROLE_1 is setup. This means any user with TEST_ROLE_1 is able to access the service, calling the operations a, b, and c.
  • Our use case requires that the authorization be configured down to operations, which are in the service that exposes operations a, b, and c. Operation a and b can only be allowed to consumer (user) with TEST_ROLE_1 and operation c can only be allowed to consumer (user) with TEST_ROLE_2.
  • Is there any way I can setup such a configuration?

Environment

  • Red Hat JBoss Fuse Service Works (FSW)
    • 6.0.x
    • 6.2.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content