Best way to use custom authentication in RESPI API


#1

Hi guys,
I’ve embedded Camunda REST API inside my application. The problem is everybody has an access to it. When I create endpoints with Spring Controllers I use @PreAuthorize(“isAuthenticated()”) annotation. Is it possible to configure the embedded rest API in that style?

Thanks!


#2

You might want to check the documentation.


#3

HTTP Basic Authentication is not what I’m looking for. I have SSO auth in my application.


#4

The previous link provided stated the following;

The authentication provider is exchangeable. You can implement the interface org.camunda.bpm.engine.rest.security.auth.AuthenticationProvider to provide another authentication method and change the filter’s initialization parameter accordingly.

I’m guessing this is also valid for SSO authentication?