Header
It is possible to use a web-facing Panopticon Streams behind a proxy server that will handle the authentication of users. The proxy server forwards the name of the user and roles to Panopticon Streams as HTTP headers for every request.
For requests where headers are blank or missing, they are treated like anonymous requests while requests where the user HTTP header are valid are treated like authenticated requests with that specific username.
Requests from the proxy server are fully trusted and checks are no longer performed at Panopticon Streams with regard to the validity of the username. The authorization on workbooks and administration will work as usual.
To activate the Header authentication, add or update the following properties in the Streams.properties file:
authentication.type=HEADER
authentication.header.role.delimiter=,
authentication.header.roles={roles header, ie. X-Roles}
authentication.header.username=={userid header, ie. X-User}
(c) 2013-2024 Altair Engineering Inc. All Rights Reserved.