[aodh][keystone] handling of webhook / alarm authentication
I was wondering how a service receiving an aodh webhook could perform
The documentation describes the webhook as a simple post-request so I
was wondering if a keystone token context is available when these
requests are received?
If not, I was wondering if anyone had any recommendation on how to
perform authentication upon received post-requests?
So far I have come up with limiting the functionality of these webhooks
such as rate-limiting and administrators having to explicitly enable
these webhooks before they work.
Hope anyone else could provide further valuable information.