snazy commented on issue #197: URL: https://github.com/apache/polaris-tools/issues/197#issuecomment-4192269126
Thanks @creepysta for raising this! IIUC (and I might be totally wrong) the MCP here was built primarily for "dev machine local execution", so there can be gaps, which is what you're rightfully pointing out here. It seems the use case (user calls service A - service A calls service B on behalf of the user) is what OAuth 2 Token Exchange is for - or mTLS (service-to-service authn + context headers) - or an API-gateway JWT-resigning. I think, those approaches would strengthen the security model. WDYT? Maybe it's better, as it touches a security sensitive topic, to discuss this on [email protected]? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
