[CKAN-support] preventing access to API 'user_list'

Wed Nov 20 00:53:17 UTC 2013

Hi Support
Smart Services Queensland (data.qld.gov.au) have asked me to somehow prevent people from using the API to retrieve the user_list e.g. data.qld.gov.au/api/3/action/user_list . They're going to start adding users with email addresses and don't want these email addresses to be publicly available (which is fair enough).

I thought there might have been a config option that makes it so that you need to be authed to access but I can't find one. If there's no config options what would the next best thing be? Some kind of extension that overrides the mapping or something?

Thanks

George Sattler
Software Developer/Analyst

Office 03 6224 2377 | Email george.sattler at xvt.com.au<mailto:george.sattler at xvt.com.au>
34 Anglesea Street, South Hobart, TAS 7004

________________________________
This email and any files transmitted with it is confidential and intended solely for the use of the addressee. The unauthorised use, dissemination, forwarding, printing or copying of this communication is strictly prohibited. If you have received this communication in error please notify us immediately by reply email and destroy this communication. Any views and opinions presented in this email are solely those of the author and do not necessarily represent the views of XVT Solutions. The recipient should check this email and any attachments for viruses. XVT Solutions accepts no liability for the content of this email, and any damage caused by any viruses that could potentially be transmitted through this email.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.okfn.org/mailman/private/ckan-support/attachments/20131120/c2b85bf0/attachment-0002.html>