Uploaded image for project: 'SMART Container'
  1. SMART Container
  2. SMART-24

Limit access to the SMART Rest API to only authenticated apps

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: TBD
    • Resolution: Fixed
    • Affects Version/s: Sprint 1
    • Fix Version/s: Sprint 1
    • Labels:
    • Complexity:
      Medium

      Description

      • Make sure that the module generates access tokens for started apps for the authenticated user automatically
      • Generate and assign unique a token when an smart app is added and get rid of when the user removes it
      • The OpenmMRS container should know about these tokens and should pass them to the rest api through the authorization header using the oauth authentication method.
      • Fix the rest api to read these from the http request headers and use them to grant access to the smart app.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                Assignee:
                wyclif Wyclif Luyima
                Reporter:
                wyclif Wyclif Luyima
                Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved: