diff options
| author | rautenberg <rautenberg@in-silico.ch> | 2012-09-22 10:08:07 +0200 |
|---|---|---|
| committer | rautenberg <rautenberg@in-silico.ch> | 2012-09-22 10:08:07 +0200 |
| commit | 16c57b5dba52cf1505acb6fc81a449ad0b5dfcbf (patch) | |
| tree | 396f88c3ba72d40b0578ad3e82cabfed63af1553 | |
| parent | 15bc2b865bf97e5272a8f3437fc69d37ff41c055 (diff) | |
extend A&A post, enlarge width of posts
| -rw-r--r-- | _posts/2012-09-03-authorization--authentication-flow-and-configuration.md | 25 | ||||
| -rw-r--r-- | assets/themes/tom/css/screen.css | 2 |
2 files changed, 26 insertions, 1 deletions
diff --git a/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md b/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md index 45b6528..393f493 100644 --- a/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md +++ b/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md @@ -18,6 +18,31 @@ Graphical Flow of Authorization & Authentication for webservices using the opent  +Configuration options +========= +inside the authorization block (see also configuration example) +* `server`- openSSO server URI +* `free_request` - requests without any Authorization and Authentication **GET, POST, PUT, DELETE** (maybe HEAD in newer Versions) +* `authenticate_request` - requests with Authentication but without Authorization **GET, POST, PUT, DELETE** +* `authorize_request` - requests controlled by Authentication and Authorization **GET, POST, PUT, DELETE** +* `free_uris` - YAML hash of requests and URIs not controlled by A&A +* `authorize_exceptions` - YAML hash of requests and URIs only authenticated, without authorization (user has to be logged in) + + +<br /> +String or regex URIs +========= +URIs in `free_uris` and `authorize_exceptions` are possible as string or regex +e.G.: + + :free_uris: + ? - :GET + : - !ruby/regexp /http:\/\/SERVER\/algorithm/ + - "http://SERVER/model" + +defines free access to GET request for "http://SEVER/model" exact URI, not to "http://SERVER/model/ID". +the regex `!ruby/regexp /http:\/\/SERVER\/algorithm/` gives free GET request to "http://SERVER/agorithm/" and all addresses below like "http://SERVER/algorithm/bbrc/". + Configuration-file example ========= diff --git a/assets/themes/tom/css/screen.css b/assets/themes/tom/css/screen.css index 810e5a1..9232b05 100644 --- a/assets/themes/tom/css/screen.css +++ b/assets/themes/tom/css/screen.css @@ -81,7 +81,7 @@ ul.posts { .site { font-size: 110%; text-align: justify; - width: 40em; + width: 60em; margin: 3em auto 2em auto; line-height: 1.5em; } |