Issue JWT Token to EdgeX service


Jihun Ha <jihun.ha@...>
 

Hello, Mr. Draskovic.

 

I've read your proposed EdgeX auth service document and have a few of question on that:

What if EdgeX services on different devices need to communicate with each other WITHOUT any user's interaction? According to your proposal, service on the client side should have its JWT token and send it to the peer service. That means, it sounds like the client service should get JWT token through login procedure. But it is hard for me to imagine how a service can login to Auth service to get JWT token without any user's input. It is because I think it is very hard to put account/password to every single services to get their own JWT token.

 

Is that any way for EdgeX service to get JWT token or something to service authentication without user's account and password? Or, other authentication method like certificate-based authentication should be used in case of service authentication?

 

Thank you in advance.

 

Best Regards,

 

Jihun Ha (하지훈/河志薰, Ph.D.)

Edge Platform Development | IoT Lab

Software R&D Center | Samsung Electronics Co., Ltd

Mobile +82 10 2533 7947

jihun.ha at samsung.com | jhha85 at gmail.com

 

 

Join EdgeX-TSC-Security@lists.edgexfoundry.org to automatically receive all group messages.