Project

General

Profile

Development #31828

restreindre l'API aux utilisateurs administrateurs authentifiés

Added by Benjamin Dauvergne over 2 years ago. Updated over 2 years ago.

Status:
Résolu (à déployer)
Priority:
Normal
Target version:
-
Start date:
28 Mar 2019
Due date:
% Done:

100%

Estimated time:
Patch proposed:
Yes
Planning:

Description

Voir #30699 et #29633.


Files

Associated revisions

Revision 6d72fb60 (diff)
Added by Benjamin Dauvergne over 2 years ago

api: restrict API to authenticated admin users (fixes #31828)

It pays attention to custom authentication on the get federation
endpoint based on apikeys defined in settings, this endpoint has no
permission at all.

History

#1

Updated by Benjamin Dauvergne over 2 years ago

  • Assignee set to Benjamin Dauvergne
#2

Updated by Benjamin Dauvergne over 2 years ago

Simplement.

#3

Updated by Benjamin Dauvergne over 2 years ago

Avec une modification pour vérifier que l'authentification pour Technocarte fonctionne sans authentification HTTP Basic.

#9

Updated by Thomas Noël over 2 years ago

  • Status changed from Solution proposée to Solution validée

Ack.

(il faudra faire attention à ajouter le login/pass dans l'URL appelée, ça peut sans doute être préparé avant de puller ce patch)

#10

Updated by Benjamin Dauvergne over 2 years ago

  • Status changed from Solution validée to Résolu (à déployer)
commit 6d72fb60b1fcf4ecf9455bcefdadc3fe2694abf3
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Mar 28 17:06:48 2019 +0100

    api: restrict API to authenticated admin users (fixes #31828)

    It pays attention to custom authentication on the get federation
    endpoint based on apikeys defined in settings, this endpoint has no
    permission at all.
#11

Updated by Benjamin Dauvergne over 2 years ago

  • % Done changed from 0 to 100

Also available in: Atom PDF