Skip to content

Authentication & Authorization

The following section describes the API Portal authorization process.

Introduction

API Portal access policies are bind to the APIAccess CRD.

Once you created a user and assigned the user to a user group, you have to appoint the user group to an API in the APIAccess CRD.

Example

See the following showcase. The user Jane Flour is part of the user group with the name support.

In the Portal permissions, you can see that this group has access to two APIs

User

User and group example

User and group example

API Portal Permissions

Portal permissions overview

Portal permissions overview

APIAccess

---
apiVersion: hub.traefik.io/v1alpha1
kind: APIAccess
metadata:
  name: custom-pick
spec:
  groups:
    - support
  apiSelector:
    matchExpressions:
      - key: area
        operator: In
        values:
          - flights
          - tickets

API Portal

API Portal with permissions for two APIs

API Portal with permissions for two APIs

What's next