Provide a simple way to authenticate clients #14
Description
Is your feature request related to a problem? Please describe.
Actually, there is no security build into the http server to protect calls from unknown people. It would be better to provide a way to secure the service by providing a way to authenticate clients.
Describe the solution you'd like
I thought of using certificate and mTLS to provide an authentication. The server would allow calls only from clients that shared they're public certificate. A manual task is required from someone to add this public certificate to madprobe trustore.
I do not want to complexy to much the security layer by providing too much way to authenticate.
Any other simple solution is welcome!
Additional context
If madprobe has security enable, we should follow this steps to allow a client to connect to talk with madprobe:
- provide madprobe's public certificate
- provide madprobe's private key
- provide a trustore containing each public client certificate we trust