Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add http header to allow query to be executed without session creation #6807

Open
richard-julien opened this issue Apr 24, 2024 · 0 comments
Open

Add http header to allow query to be executed without session creation #6807

richard-julien opened this issue Apr 24, 2024 · 0 comments
Assignees
@richard-julien
Labels
feature use for describing a new feature to develop
Milestone
Release 6.2.0

Comments

@richard-julien
Copy link
Member

richard-julien commented Apr 24, 2024
edited

Use case

In some case, external client that call opencti (taxii client ...) are not able to manage an http session.
This situation leads to a session explosion in opencti depending on the session maximum time.
As these clients are able to add some extra header, the concept is to prevent session creation if this header is available
This issue will also refactor part of code to use user loading from cache in auth and basic finding

opencti-no-session = ?1

opencti-no-session is a boolean and so ?0 or ?1 to be compliant with http specification

This header is not recommanded if the client is able to support session management.
@richard-julien richard-julien added the feature use for describing a new feature to develop label Apr 24, 2024
@richard-julien richard-julien added this to the Release 6.0.11 milestone Apr 24, 2024
@richard-julien richard-julien self-assigned this Apr 24, 2024
@richard-julien richard-julien changed the title Add http header to allow http query to be executed without session creation Add http header to allow query to be executed without session creation Apr 24, 2024
richard-julien added a commit that referenced this issue Apr 24, 2024
@richard-julien
[backend] Add http header to allow query to be executed without sessi…
3e562a1 
…on creation (#6807)
richard-julien added a commit that referenced this issue Apr 24, 2024
@richard-julien
[backend] Add http header to allow query to be executed without sessi…
5ef0ca7 
…on creation (#6807)
richard-julien added a commit that referenced this issue Apr 24, 2024
@richard-julien
[backend] Add doc for typescript validation (#6807)
0a2d26a
richard-julien added a commit that referenced this issue Apr 25, 2024
@richard-julien
[backend] Change error to null if find user return nothing (#6807)
f8d5e84
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@richard-julien richard-julien

Labels
feature use for describing a new feature to develop
Projects
None yet
Milestone
Release 6.2.0
Development

No branches or pull requests
1 participant
@richard-julien