Is your feature request related to a problem? Please describe.
The Tethys Portal API was put together haphazardly to support the experimental React template and is using simple session auth to verify authentication:
This works ok, but it would be better and probably more secure to implement an oauth/token pattern. This would also support our use case of the API for federating Portals in the future.
Is your feature request related to a problem? Please describe. The Tethys Portal API was put together haphazardly to support the experimental React template and is using simple session auth to verify authentication:
https://github.com/tethysplatform/tethys/blob/9f5b60c787c1c3f2bca29df83d3da64b1377f532/tethys_portal/views/api.py#L25
This works ok, but it would be better and probably more secure to implement an oauth/token pattern. This would also support our use case of the API for federating Portals in the future.
Describe the solution you'd like Use django_oauth_tools to implement better auth for Portal API: https://django-oauth-toolkit.readthedocs.io/en/latest/rest-framework/getting_started.html#step-2-create-a-simple-api
Describe alternatives you've considered N/A
Additional context N/A