Requirement

As an operator of Jaeger installation
I want to be able to setup a user authentication mechanism
to restrict which users can access tracing data in Jaeger UI.

Problem

Jaeger does not support authentication for UI today

Proposal

We may want to model the approach on how Grafana does it: https://grafana.com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/grafana/.

We do not want to re-implement everything from scratch, there are probably existing libraries that provide auth support for basic methods like name/pwd, LDAP, and OAuth. If such library has sensible dependencies it may be worth incorporating it.

The execution plan would be:

• Do the research of available libraries and make a proposal
• Incorporate selected library into Jaeger Query (UI handler)
  • TBD: do we want similar auth to the API endpoint?
• Implement integration tests for supported modes
• Update documentation to explain how to configure auth.

Open questions

No response