FIWARE - Token API Orion Context Broker

I have in my server a Orion Context Broker (https://github.com/telefonicaid/fiware-orion) but i need to add some restrictions to my "consumers" when they use the endpoint(s) e.g(http://myhost:1026/v2/entities). Is possible configure the local/personal Broker with token like https://fiware-orion.readthedocs.io/en/1.11.0/quick_start_guide/index.html#orion-context-broker-quick-start-guide ?

Thank you very much.

Solution

The Orion Context Broker does not offer roles and permissions directly. To add roles and permissions to restrict an endpoint, you will need to use a PEP Proxy - which security mechanism you use to do this is up to you.

There are several OAuth2-based security components found within the FIWARE Catalogue, alternatively you could another open source PEP Proxy such as steelskin which integrates nicely with either Keyrock or Keystone

Orion context broker doesn't create tenant databases "on the fly"
Connect system which includes OPC UA IoT Agent, Orion Context Broker. Cygnus and Historic data with Postgres
ERROR: Pool overlaps with other one on this address space
Displaying Irrelevant Sensor Data in FIWARE Orion When Using IoT Agent-JSON and Mosquitto
Get all Fiware-ServicePath for a specific Fiware-Service
FIWARE PEP Proxy Wilma server fails to start
FIWARE Orion-LD upsert replace endpoint: only attributes or completely (including type)?
FIWARE FIROS Publish cmd_vel from Non-ROS-World
IoTAgent (JSON) over MQTT doesn't receive measurements from mosquitto
Orion sending error message "connection failed, after 100 retries"
Orion-ld fails to establish a connection with the MongoDB Community Operator due to a connection string issue
How to get the missing table Schema while using quantumleap in cratedb using orion LD context broker though the subscriptions are working?
yum error "Cannot retrieve metalink for repository: epel. Please verify its path and try again" updating ContextBroker
Specifying attributes to be aggregated by STHSink
Why Orion-ld after 0.8.0 is not supporting the formation of service/subservice in quantumleap logs?
issues configuring a device via bidirectional attributes using IOT agent JSON and Orion LD
Error downloading and installing Java JDK in CentOS (FIWARE)
Context provider application: MongoDB connection unsuccessful
How to maintain a FIWARE apikey?
How to get the servicePath from /v2/entities GET call
Orion APIs authentication through Keycloak
My dockerized service doesn't receive the notification sent by Orion Context Broker
How to send massive data of sensors in Orion
Notify python orion/quantumleap subscription changes
Can I send a notification in the creation and deletion of an entity?
HTTP POST request gets transformed to GET request
Orion APIs authorization through Keycloak
Fiware orion /op/query endpoint working explaination
Subscription between Orion context broker and Quantumleap works, but table is not created in CrateDB
Calling external APIs through fiware orion context broker to validate using keyrock