This chapter discribes the data flow for autorization and authentification by the UX-Framework. For autorization the machanismes provided by SDNC (SDNC-485) of the Application Authorization Framework Project are used. 

For Authentication ODL-AAA bundle is used. Please https://docs.opendaylight.org/en/stable-oxygen/user-guide/authentication-and-authorization-services.html#


SDNC-648 - Getting issue details... STATUS


User Authentication and Authorization  Karaf OpenDaylight SDN-R User User WebClient WebClient Jetty Jetty AAFShiroRealm AAFShiroRealm CADIfilter CADIfilterLog Log AAF AAF authentification 1uri:/odlux/index.html 2Any request without token 3Login view 4Provide credentials 5uri:/oath2/tokenuser:password 6  7authentificate 8authentificated:true|false 9  10Create log entry 11200 Ok:token |401 Unauthorized http request 12Request some data 13URI and token 14verify tokenlmao 15check access rightsfor user and uri To be checked:user or group! 16true|false 17true|false 18URI-response(200 Ok |401 Unauthorized)

Example

Token request:

curl -d 'grant_type=password&username=admin&password=Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U&scope=sdn' http://localhost:8181/oauth2/token

Token response:

{"access_token":"34e8340a-0d2f-3bc0-90eb-369a636dd6f2","token_type":"Bearer","expires_in":36000}


Default request:

curl -v -H "Authorization: Bearer 34e8340a-0d2f-3bc0-90eb-369a636dd6f2" http://localhost:8181/restconf/operational/network-topology:network-topology/topology/topology-netconf


Please find more info:

https://docs.opendaylight.org/en/stable-oxygen/user-guide/authentication-and-authorization-services.html#

Related Jiras:

SDNC-584SDNC-648

  • No labels

1 Comment

  1. Martin Skorupski

    NetConf-Notification-Handling
    How to rename it?