Support authentication when fetching QGIS Server tiles / map requests

kartoza / geonode

GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data.

http://geonode.org/

GNU General Public License v3.0

8 stars 17 forks source link

Support authentication when fetching QGIS Server tiles / map requests #147

Open gubuntu opened 7 years ago

gubuntu commented 7 years ago

When GeoServer is used as a backend, it is possible to delegate authorization to the GeoServer backend. In QGIS Server there is no such concept of layer or request level permissions. Instead we propose to implement permissions via django-guardian which provides object level permissions.

~~Specifically, for the GeoSAFE launch, support ThinkHazard authentication requirements (from #160)~~

gubuntu commented 7 years ago

we should not need to use django-guardian if we can simply use the same decorators that are being used in the layer views, in the TMS and OGC service views.

If we implement this, the QGIS client will need to be tested against it.

Implement it using the pattern established in https://github.com/kartoza/geosafe/issues/242

boney-bun commented 6 years ago

@gubuntu QGIS backend doesn't have an auth mechanism, but only access token. the only thing we can add probably is to force a user to login via browser before getting the tile layer. something like this: geonode147

not sure how we can add the auth if the user access the TMS via a GIS software though. or, probably i misunderstood the issue?