Profiles for Cross-Plugin Communication
· 4 min read
OpenBao and upstream lack server-side cross-pluign communication.
As recently seen with an OIDC feature, this shortcoming often needs to be worked around on the client side, potentially exposing sensitive information.
There's usually two paths discussed for cross-plugin communication:
- Requests bound under the context of the original user token.
- Designing some other authorization system or an internal API based design.