URGENT: Lb4 how to securely access the main API from the Admin API #8110
Unanswered
BillyCottrell
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Hi there,
I am currently trying to set up my API, but I am kind of running into an issue.
So I have 2 portals, 1 for the main platform where companies and their users are making configurations, and 1 for the admins to manage/help the customers with their configuration.
I was thinking to use 2 separate APIs with their own database configured, so that the admin can access the admin API which then accesses the main API. This way there would only be a connection from the admin to the main API and not the other way. The only problem is the authentication, how can I make sure that the admin is authorized to access the main API without having a connection to the admin API/database?
Unless decoupling the admin from the main API isn't a good idea?
Thanks in advance!
Update 1
Is it possible to perhaps move the authentication outside the API and build a separate authentication API to improve the security of both users and admins?
Beta Was this translation helpful? Give feedback.
All reactions