Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Authentication should be removable for (non-editable) deployed public catalogue #52

Open
DILewis opened this issue Jan 26, 2021 · 1 comment
Open

Authentication should be removable for (non-editable) deployed public catalogue #52

DILewis opened this issue Jan 26, 2021 · 1 comment
Assignees
@MauPalantir @simar0at
Labels
enhancement New feature or request

Comments

@DILewis
Copy link
Collaborator

DILewis commented Jan 26, 2021

Currently all pages go through eXist authentication. This is very useful for the MerMEId editor.
Most deployments of published catalogues are likely to be open access, so it would be good if you could either:

  • control the authentication to exclude pages or forms of access from access control; or
  • provide an alternative deployment dockerfile that has no authentication, but is also effectively read only
    (I think the relevant config is currently handled in MerMEId/jetty-exist-additional-config/etc/webapp/WEB-INF/web.xml )
@DILewis DILewis added the enhancement New feature or request label Jan 26, 2021
@peterstadler
Copy link
Member

The behavior has changed since #87, so unauthorized access is granted to viewing HTML and XML, see e.g. https://mermeid.edirom.de/modules/present.xq?doc=nielsen_maskarade.xml

Is that already enough to resolve this issue?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@MauPalantir MauPalantir

@simar0at simar0at

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@MauPalantir @simar0at @peterstadler @DILewis