[ https://jira.fiware.org/browse/HELP-16996?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Fernando Lopez reassigned HELP-16996:
-------------------------------------
Assignee: Jason Fox
> [fiware-stackoverflow] Fiware multitenancy
> ------------------------------------------
>
> Key: HELP-16996
> URL: https://jira.fiware.org/browse/HELP-16996
> Project: Help-Desk
> Issue Type: Monitor
> Components: FIWARE-TECH-HELP
> Reporter: Backlog Manager
> Assignee: Jason Fox
> Labels: fiware, fiware-orion, fiware-wilma
>
> Created question in FIWARE Q/A platform on 15-10-2020 at 10:10
> {color: red}Please, ANSWER this question AT{color} https://stackoverflow.com/questions/64368023/fiware-multitenancy
> +Question:+
> Fiware multitenancy
> +Description:+
> We are evaluating several platforms for integrating a "Smart Energy System".
> One important requirement we have to support is multitenancy. From the docs I can see the possibility to start the Orion Context Broker with this option. Orion will ensure the data separation based on the fiware-service request header.
> That's fine but how to "secure" this header across the whole software stack (PEP-Proxy, IoT-Agent)?
> Which component/device sets this header? Which component ensures that a request with a specific fiware-service header value is authorized to access the data of this tenant?
> In my opinion this is a task for Wilma as PEP-Proxy. All traffic to Orion is routed through the PEP-Proxy and the proxy checks if this request is valid. Unfortunately I can not find such a check within the source code nor it is explained in the documentation.
> Has someone implemented such an architecture an can help me?
--
This message was sent by Atlassian JIRA
(v6.4.1#64016)
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy