-
Type:
Improvement
-
Status: Open
-
Priority:
Minor
-
Resolution: Unresolved
-
Affects Version/s: None
-
Fix Version/s: QualifiedToSchedule
-
Component/s: Web Common
It may be useful to easily filter some urls.
The use case is mainly about urls pointing to REST APIs.
Some endpoints should be filtrable :
- on / off : global availability
- filter on REFERER : only requests comming from Nxeo should be allowed
- filter on Authentication : only requests using token based authentication should be allowed
Global filter
We should add a global http filter that can be applied to any url pattern
Automation Server
Automation Server does already handle a way to filter API on a per Operation basis :
code
<extension target="org.nuxeo.ecm.automation.server.AutomationServer" point="bindings">
...
<binding name="Blob.Create">
<administrator>true</administrator>
</binding>
...
code
We should extend the Binding system to be able to filter :
- on Authentication Plugin
- on REFERER
- ???
