A PV and any data related to it can be deleted without any verification

archiver-appliance / epicsarchiverap

This is an implementation of an archiver for EPICS control systems that aims to archive millions of PVs.

Other

38 stars 37 forks source link

A PV and any data related to it can be deleted without any verification #197

Closed lvhuihui1988 closed 3 months ago

lvhuihui1988 commented 6 months ago

Anyone can delete a PV and its historical archiving data from the website without any password or other permission authentication. If someone dose it by mistake, all the data is lost. Is there any protective measure, for example, adding a password verification? Thanks a lot.

jacomago commented 6 months ago

Yes, right now there is no authentication or authorization mechanism. There are some options however:

Only expose the retreival interface to your users, either with proxying the retreival or only allowing uses access via some other interface such as phoebus.
Setting up a proxy that does authentication, such as apache.
Setting up the host tomcat service with authentication, see https://serverfault.com/questions/192000/quick-way-to-password-protect-tomcat

slacmshankar commented 3 months ago

Agree with @jacomago here. We've always intended authnz to be external to the appliance.