-
Notifications
You must be signed in to change notification settings - Fork 54
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Auth and Rights #9
Comments
Proposed text in http://image-auth.iiif.io/api/image/2.1/#authentication |
Auth has been replaced by lots of more specific issues and has been written up. Rights are in image API now as well, so this issue can be closed. -- Eds |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Current spec says:
Which doesn’t make sense so needs correction. Also would be good to discuss practical issues of how auth is being done. Once authenticated it seems that authorization cookie tokens are the means all(?) implementations use to grant access. This happens automagically in the browser but should perhaps specified so that mediated or non-browser applications know to expect to have to get and keep cookies.
Scenarios.
Implementation logic (possible):
See this gist for how the new info.json might look.
The text was updated successfully, but these errors were encountered: