Remote access, access restriction (!753) · Merge requests · BCU / mxcubeweb

Marcus Oskarsson requested to merge gh-ef9852f1/753/marcus-oscarsson/ra-sec into master Mar 16, 2018

Created by: marcus-oscarsson

Hey !

Preliminary work to make remote access a bit more secure:

Implemented the following convention in the login routine:

A user is granted access IFF the following criteria is met:

User on local host and valid credentials
User on remote host, session already exists and valid credentials

All the routes except login is decorated with the restrict decorator which gives a 404 to anyone without a valid session.

This will be followed up by some more enhancements to the RA feature, such as giving local operators certain privileges to retake control, enable and disable remote access completely.

Cheers, Marcus

Remote access, access restriction

Merge request reports