diff options
Diffstat (limited to '_posts/2012-09-03-authorization--authentication-flow-and-configuration.md')
| -rw-r--r-- | _posts/2012-09-03-authorization--authentication-flow-and-configuration.md | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md b/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md index 901fe4e..205b6ed 100644 --- a/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md +++ b/_posts/2012-09-03-authorization--authentication-flow-and-configuration.md @@ -7,9 +7,10 @@ tags: [Configuration, Setup, Webservices] --- {% include JB/setup %} +see also [webservice configuration example](/Installation/2013/05/03/authorization--authentication-configuration-opentox-serverclient--300/) for opentox-(client/server) version >= 3.0.0. A&A How it works -========= +------- A&A is located in a before filter method of the ruby framework sinatra, which means every request (REST) to the sinatra application is controlled by the code inside this filter befor anything else happens. If A&A is activated: @@ -22,7 +23,7 @@ If A&A is activated: A&A Flow opentox-ruby gem -========= +------- Graphical Flow of Authorization & Authentication for webservices using the opentox-ruby gem. Webservice configuration is located in **/home/USERNAME/.opentox/config/ENVIRONMENT.yaml** @@ -30,7 +31,7 @@ Graphical Flow of Authorization & Authentication for webservices using the opent Configuration options -========= +------- inside the authorization block (see also configuration example) * `server`- openSSO server URI. If this line is set to `:server: ` A&A is disabled. * `free_request` - requests without any Authorization and Authentication **GET, POST, PUT, DELETE** (maybe also HEAD in newer Versions) @@ -42,7 +43,7 @@ inside the authorization block (see also configuration example) <br /> String or regex URIs -========= +------- URIs in `free_uris` and `authorize_exceptions` are possible as string or regex e.G.: @@ -55,7 +56,7 @@ defines free access to GET request for "http://SEVER/model" exact URI, not to "h the regex `!ruby/regexp /http:\/\/SERVER\/algorithm/` gives free GET request to "http://SERVER/agorithm/" and all addresses below like "http://SERVER/algorithm/bbrc/". Configuration-file example -========= +------- # OpenSSO Authorization # set ":server: " to disable A&A |