Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Question]: User authentication using JWT in lizmap #4837

Open
1 task done
diaznico opened this issue Oct 4, 2024 · 1 comment
Open
1 task done

[Question]: User authentication using JWT in lizmap #4837

diaznico opened this issue Oct 4, 2024 · 1 comment

Comments

@diaznico
Copy link

diaznico commented Oct 4, 2024

What is the question? (in English)

Hello! I would like to implement a REST API in my Lizmap project. The goal of this API is to receive an array of unique identifiers, use it to filter geometries, and return the URL of a map with the filtered geometries. However, I need to add a token-based authentication system so that third parties consuming the API can access the private maps.

I'm an experienced Python professional, but I feel a bit lost with the Lizmap and PHP environment. I'm wondering how I could integrate the token authentication system into Lizmap. Is it something excessively complex for someone without much experience in this environment?

I've been looking for information on forums and discussions, but I haven't found enough material. The closest thing to what I need is this guide Lizmap GobsAPI Module : https://docs.3liz.org/lizmap-gobsapi-module/install/

Could you give me some guidance on how to proceed?

Versions, safeguards, check summary etc

Versions :

  • Lizmap Web Client : 3.7.6
  • Lizmap plugin : 4.3.14
  • QGIS Desktop : 3.22.4
  • QGIS Server : 3.22.4
  • Py-QGIS-Server : not used
  • QGIS Server plugin atlasprint : 3.3.2
  • QGIS Server plugin lizmap_server : 2.8.6
  • QGIS Server plugin wfsOutputExtension : not found
List of safeguards :
  • Mode : safe
  • Allow parent folder : no
  • Prevent other drive : yes
  • Prevent PG service : yes
  • Prevent PG Auth DB : yes
  • Force PG user&pass : yes
  • Prevent ECW : yes

Check Lizmap plugin

  • I have done the step just before in the Lizmap QGIS desktop plugin before opening this ticket. Otherwise, my ticket is not considered valid and might get closed.

Operating system

Ubuntu 20.4

Browsers

Chrome

Browsers version

chrome 106

Relevant log output

No response

@Gustry
Copy link
Member

Gustry commented Oct 7, 2024

Related tickets mentioning JWT from a search on GitHub : #937 #3650 and #922 The ticket 3650 has only been closed because of a lack of feedback.

Maybe @laurentj has an idea ?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants