Component org.nuxeo.ecm.restapi.server.auth.config
In bundle org.nuxeo.ecm.platform.restapi.server
Contributions
- org.nuxeo.ecm.restapi.server.auth.config--specificChains
- org.nuxeo.ecm.restapi.server.auth.config--openUrl
XML Source
<?xml version="1.0"?>
<component name="org.nuxeo.ecm.restapi.server.auth.config">
<!--
Setup a Basic Auth plugin for /automation paths that will always send 401 on authentication failures
-->
<require>org.nuxeo.ecm.automation.server.auth.config</require>
<extension point="openUrl" target="org.nuxeo.ecm.platform.ui.web.auth.service.PluggableAuthenticationService">
<openUrl name="RestApiDoc">
<grantPattern>/nuxeo/api/v[0-9]+/doc/.*</grantPattern>
</openUrl>
<openUrl name="RestApiDocJson">
<grantPattern>/nuxeo/site/api/v[0-9]+/doc/.*</grantPattern>
</openUrl>
<openUrl name="RestApiDocSiteSkin">
<grantPattern>/nuxeo/site/skin/api/.*</grantPattern>
</openUrl>
</extension>
<extension
target="org.nuxeo.ecm.platform.ui.web.auth.service.PluggableAuthenticationService"
point="specificChains">
<specificAuthenticationChain name="RestAPI">
<urlPatterns>
<url>(.*)/api/v.*</url>
</urlPatterns>
<replacementChain>
<plugin>AUTOMATION_BASIC_AUTH</plugin>
<plugin>TOKEN_AUTH</plugin>
</replacementChain>
</specificAuthenticationChain>
</extension>
</component>