Authentication for write actions #5

New Issue

Closed

opened 2021-10-26 10:27:56 +02:00 by erth9960 · 0 comments

erth9960 commented 2021-10-26 10:27:56 +02:00

Owner

Copy Link

The only authentication that is currently in place is for viewing of videos. This is done in communication with the play platform.

A different authentication solution is required for API endpoints that make changes, such as queue item and presentation deletion.

A new configuration item called auth should be added to the [api] section of config.ini. It should contain some fixed password string.

Any request using the DELETE method should always require authentication. Requests should contain a json body with a field called auth, which must match the stored password.

The only authentication that is currently in place is for viewing of videos. This is done in communication with the play platform. A different authentication solution is required for API endpoints that make changes, such as queue item and presentation deletion. A new configuration item called `auth` should be added to the `[api]` section of `config.ini`. It should contain some fixed password string. Any request using the `DELETE` method should always require authentication. Requests should contain a json body with a field called `auth`, which must match the stored password.

dafo5502 self-assigned this 2021-10-27 10:58:21 +02:00

dafo5502 added a new dependency 2021-10-27 10:59:41 +02:00

#7 added password check for DELETE method

dafo5502 closed this issue 2021-10-27 17:20:25 +02:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

No results found.

No results found.

Labels

No items

No Label

Milestone

No items

No Milestone

Assignees

Clear assignees

No Assignees dafo5502

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Blocks

#7 added password check for DELETE method

DMC/play-api

Reference: DMC/play-api#5

No description provided.