IMPORTANT NOTE: From version 2.0.0, this buildpack supports only ingress scenario. Egress scenarios are supported by another supply buildpack https://github.com/alfusinigoj/route-service-auth-egress-buildpack
This project offers a supply buildpack which helps applying IWA security (kerberos) for app-app/svc-svc/webapp secure communication, in PCF.
In detail, if application running in PCF is protected by route service
(https://github.com/macsux/route-service-auth), this buildpack helps in injecting the logged-in user principal into the current context/thread, please listen to Andrew Stackhov's video here "youtube video link here"'
- Injects a HttpModule which sets the user identity into the current context/thread by configuring web.config accordingly and copying the assembly containing the module
- If it detects a Wcf Service, configured the web.config for adding a service behaviour which uses a custom authorization policy to copy the user principal from current http context to wcf thread. It also copies the assembly containing the custom authorization policy
Targets
Clean
--> cleans bin/obj/artifacts folderRestore
--> Restores all nuget dependencies (depends onClean
)Compile
--> Compiles the buildpack (depends onRestore
)Test
--> Runs all the tests for the buildpack (depends onCompile
)Publish
--> Publishes the buildpack artifact underartifacts
directory (depends onTest
)Release
--> Create a new buildpack release under the github repo (depends onPublish
). You will be prompted forGithub ApiToken
which has release rights to the github repo, alternatively you can pass as commandline param--GitHubToken