Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access

2020-10-05 Thread Joshua D. Shaw
Subject: Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access Just as a follow-up, I've created a JIRA ticket about this: https://archivesspace.atlassian.net/browse/ANW-1123<https://nam12.safelinks.protection.outlook.com/?url=htt

Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access

2020-10-05 Thread Joshua D. Shaw
PM To: Archivesspace Users Group Subject: Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access David is totally correct. Not related to the public user at all as I had initially speculated. I wonder why some of the get endpoints never got specific permissions? At a mini

Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access

2020-09-29 Thread Joshua D. Shaw
m. Joshua From: archivesspace_users_group-boun...@lyralists.lyrasis.org on behalf of David P. Steelman Sent: Tuesday, September 29, 2020 12:28 PM To: Archivesspace Users Group Subject: Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and acc

Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access

2020-09-29 Thread David P. Steelman
s.org> on behalf of > Custer, Mark > *Sent:* Tuesday, September 29, 2020 12:15 PM > *To:* Archivesspace Users Group < > archivesspace_users_group@lyralists.lyrasis.org> > *Subject:* Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API > authentication and access > > I

Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access

2020-09-29 Thread Joshua D. Shaw
er, Mark Sent: Tuesday, September 29, 2020 12:15 PM To: Archivesspace Users Group Subject: Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access I'm curious if this has always been the case, as well, but it would seem like it has been. I knew that the rep

Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access

2020-09-29 Thread Custer, Mark
nt: Tuesday, September 29, 2020 11:54 AM To: Archivesspace Users Group Subject: Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access That's a *very* interesting find! I had naively believed the docs that indicated that most of the endpoints required authenticati

Re: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access

2020-09-29 Thread Joshua D. Shaw
020 11:36 AM To: Archivesspace Users Group Subject: [Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access I've been investigating providing access to the ArchivesSpace RESTful API to an expanded group of users. Through testing, it appears that many of the RESTful API endpo

[Archivesspace_Users_Group] ArchivesSpace RESTful API authentication and access

2020-09-29 Thread David P. Steelman
I've been investigating providing access to the ArchivesSpace RESTful API to an expanded group of users. Through testing, it appears that many of the RESTful API endpoints (see below) do not require user authentication (i.e., do not require a "session" key), and access apparently cannot be control