[the-datatank] Authentication feature

Pieter Colpaert pieter.colpaert at okfn.org
Thu Oct 11 09:23:15 UTC 2012


Hi All,

I would indeed not opt for the option of using OAuth inside The
DataTank. It needs severe changes in the architecture, and let's face
it, putting our nice URI structure behind authentication is like
painting the Mona Lisa black to protect the Mona Lisa from forgery.

Instead I would indeed go for putting The DataTank online behind a HTTP
proxy, like another nginx instance, and add authentication on the proxy
which proxies it to the rest of the world.

Another option is indeed to use PlugID, but PlugID is where The DataTank
was 1.5 years ago, so I wouldn't recommend using it for a stable system
just yet.

Kind regards,

Pieter

On 10/11/2012 10:52 AM, Jan Vansteenlandt wrote:
> Hi list,
> 
> 
> Jan here with a question towards the datatank stakeholders, Dries
> Droesbeke from Digipolis Antwerp is working on a datatank installation
> for an antwerp hackaton. He'd also like to authenticate users, currently
> there's no such feature present in the develop branch ( or master branch
> for that matter ). There is however a branch that attempts to perform
> user management and authentication, but I have a feeling the
> authentication needs to be fully integrated instead of partially
> datatank and partially script-wise ( which is now the case in the access
> list branch ).  
> 
> My question is how do you see this user-wise.
> 
> My suggestion: TDTAdmin/Users -> The resource will be handled by a new
> controller and foresees the following:
> 
>                    GET: returns all users
>                    HEAD: same as get, but only the headers
>                    PUT/POST: (new_)user as a parameter and adds the user
> to the back-end.
> 
> My question for Dries is if you expect an api_key in return, after the
> user addition, or will you be passing a password as well through the PUT
> request? Also, you asked for a feature to add tokens/secrets for apps.
> Do you mean OAuth by this? If so, we should take a look at the OAuth API
> made by iRail.
> 
> 
> Best regards,
> 
> 
> Jan
> 
> 
> _______________________________________________
> the-datatank mailing list
> the-datatank at lists.okfn.org
> http://lists.okfn.org/mailman/listinfo/the-datatank
> 


-- 
OKFN Open Transport Working group
OKFN Belgium vzw/asbl
+32 (0) 486/747122




More information about the the-datatank mailing list