search

alan-turing-institute / simulate

A web framework for research simulations.
http://simulate.readthedocs.io
MIT License
4 stars 1 forks source link

Use login authentication tokens in all API calls #61

Closed nbarlowATI closed 6 years ago

nbarlowATI commented 6 years ago

Goal

Require use of token to make API calls

Acceptance criteria

API no longer accepts requests without valid token.

Out of scope

Log off from front end only.

Implementation notes

masonlr commented 6 years ago

Aiming to call the gateway-auth /auth/status endpoint for authorisation check. Will aim to implement this using a resource method decorator described in the flask restful documentation: http://flask-restful.readthedocs.io/en/0.3.5/extending.html#resource-method-decorators

masonlr commented 6 years ago

This has been implemented as https://github.com/alan-turing-institute/gateway-auth.

The authentication is activated by alan-turing-institute/gateway-middleware#23.