Stream: ibm
Topic: Disable authentication
Teva Riou (Jan 23 2021 at 13:23):
Hello! Is there a way to make the server public disabling authentication ? In my fhir-server-config.json, basic and oauth is disabled but I still have to send credentials with my requests.
Lee Surprenant (Jan 25 2021 at 12:21):
Unfortunately not without editing the code. This was an unfortunately side-affect of moving to JAXRS-based authentication a while back. We opened https://github.com/IBM/FHIR/issues/1020 for tracking and https://github.com/OpenLiberty/open-liberty/issues/12050 for OpenLiberty to work the way we think it should, but its been quite a while...we might need to consider doing something here.
The workaround we've used is to hardcode the basic auth header from our ingress (kubernetes) or api gateway.
Last updated: Apr 12 2022 at 19:14 UTC
