You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm investigating setting up Warpgate as a gateway/proxy to access an HTTP service. We also need to be able to access said service's rest API, and the Tickets feature seems like it handles this need.
However, since only admins can create Tickets, I'm wondering how this is intended to work in a multi-user setup?
The admin having to then share/provide the ticket to the intended user comes with all the other problems that exist with secret sharing (aka don't email the password), and despite Warpgate not ever showing it to you again, the admin does have the ability to save the ticket and potentially impersonate another user. Granted, you shouldn't have someone who would do that as your admin in the first place, but I'm just trying to think of potential issues so that I can address them in my setup.
Are there any recommendations/best practices on how to manage this that people who have setup Warpgate at an organization wouldn't mind sharing?
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
I'm investigating setting up Warpgate as a gateway/proxy to access an HTTP service. We also need to be able to access said service's rest API, and the Tickets feature seems like it handles this need.
However, since only admins can create Tickets, I'm wondering how this is intended to work in a multi-user setup?
The admin having to then share/provide the ticket to the intended user comes with all the other problems that exist with secret sharing (aka don't email the password), and despite Warpgate not ever showing it to you again, the admin does have the ability to save the ticket and potentially impersonate another user. Granted, you shouldn't have someone who would do that as your admin in the first place, but I'm just trying to think of potential issues so that I can address them in my setup.
Are there any recommendations/best practices on how to manage this that people who have setup Warpgate at an organization wouldn't mind sharing?
Beta Was this translation helpful? Give feedback.
All reactions