diff options
author | rautenberg <rautenberg@in-silico.ch> | 2012-09-03 11:52:49 +0200 |
---|---|---|
committer | rautenberg <rautenberg@in-silico.ch> | 2012-09-03 11:52:49 +0200 |
commit | aca59cd10d3ccd5aff5506ed0fffe279df15e7a7 (patch) | |
tree | b692fc69d7b60375df75a86e58abcb39e7f1ed05 | |
parent | b4433b8dbaa35111eff54c1b8a7d3ee09b448bd8 (diff) |
initial A&A flow
-rw-r--r-- | _posts/2012-09-03-authorization--authentication-flow-and-configuration.md | 68 | ||||
-rw-r--r-- | images/aa_flow.gif | bin | 0 -> 20414 bytes |
2 files changed, 68 insertions, 0 deletions
diff --git a/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md b/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md new file mode 100644 index 0000000..78f0e65 --- /dev/null +++ b/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md @@ -0,0 +1,68 @@ +--- +layout: post +title: "Authorization & Authentication Flow and Configuration" +description: "" +category: +tags: [] +--- +{% include JB/setup %} + + + + +A&A Flow opentox-ruby gem +========= + +Graphical Flow of Authorization & Authentication for webservices using the opentox-ruby gem. Webservice configuration is located in **/home/USERNAME/.opentox/config/ENVIRONMENT.yaml** + +![Authorization Authentication](/images/aa_flow.gif) + + +Configuration-file example +========= + + # OpenSSO Authorization + # set ":server: " to disable A&A + :authorization: + :server: https://opensso.in-silico.ch + :free_request: #request-method not controlled by A&A + - "" + :authenticate_request: #only for authenticated user + - "" + :authorize_request: #only for authenticated and authorized user + - "GET" + - "POST" + - "HEAD" + - "DELETE" + - "PUT" + # Exceptions: + :free_uris: #request-method for uri not controlled by A&A + ? - :GET + : - !ruby/regexp /http:\/\/SERVER\/algorithm/ + - "http://SERVER/model" + - "http://SERVER/dataset" + - "http://SERVER/validation" + - "http://SERVER/toxcreate" + - !ruby/regexp /http:\/\/SERVER\/validation\/resources/ + - !ruby/regexp /http:\/\/SERVER\/validation\/[a-z,A-Z,\/,_\-]*$/ + ? - :GET + - :POST + - :HEAD + : - !ruby/regexp /http:\/\/SERVER\/toxcreate\/[a-z,A-Z,\/,_\-]*$/ + - !ruby/regexp /http:\/\/SERVER\/task/ + - !ruby/regexp /http:\/\/SERVER\/compound/ + - !ruby/regexp /sign_(in|out)$/ + ? - :PUT + : - !ruby/regexp /http:\/\/SERVER\/task/ + ? - :DELETE + : - "http://SERVER/task/cleanup" + + :authorize_exceptions: #request-method for uri only authenticated, no authorization + ? - :POST + : - !ruby/regexp /http:\/\/SERVER\/algorithm/ + - "http://SERVER/dataset" + - "http://SERVER/model" + - "http://SERVER/validation" + - !ruby/regexp /http\:\/\/SERVER\/validation\/[a-z,A-Z,\/,_\-]*$/ + +
\ No newline at end of file diff --git a/images/aa_flow.gif b/images/aa_flow.gif Binary files differnew file mode 100644 index 0000000..b357559 --- /dev/null +++ b/images/aa_flow.gif |