Authentication without authorizations

Hi, I want to enable authentication in the engine but I’m not interested in managing authorizations.

I have to publish a camunda engine res api on the internet and my only goal is to prevent outsiders from messing up with it. The normal usage of the api will be throw an application I’m developing and I like how it works by default (no users).

What would you recommend to achieve my goal?

Cheers, Gonzalo

Are you exposing the API directly to the internet or are you building a wrapper/intermediary with something like Node.js?

It will be directly exposed to the internet.

Based on docs you need authorization if you are exposing directly to internet:

Generally speaking, authorization is only required if untrusted parties interact with the process engine api directly.