Add authentication to content app
A user from AAH wants to be able to log who is downloading from the content app (https://issues.redhat.com/browse/AAH-643), so having authentication will be needed. Requests can be authenticated through middleware (https://docs.aiohttp.org/en/stable/web_advanced.html#middlewares) that will run the same auth methods used by the DRF views. The middleware could be configured by a new setting so users could turn it off. If a request fails authentication they will be marked as an AnonymousUser, but still allowed to download content. The RBAC content guard would use the authentication from this middleware to determine if the user has permission to download or not.
Please register to edit this issue