[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[aodh][keystone] handling of webhook / alarm authentication


I was wondering how a service receiving an aodh webhook could perform

The documentation describes the webhook as a simple post-request so I
was wondering if a keystone token context is available when these
requests are received?

If not, I was wondering if anyone had any recommendation on how to
perform authentication upon received post-requests?

So far I have come up with limiting the functionality of these webhooks
such as rate-limiting and administrators having to explicitly enable
these webhooks before they work.

Hope anyone else could provide further valuable information.

Kind regards,
Corne Lukken
Watcher core-reviewer