ICUBAM supports password, token based and cookie based authentication, depending on the endpoint.
JWT encoded tokens are used for the
/update endpoint of the WWW server. For
this endpoint, each token is only valid for a
icu_id pair, and allows
to update information for a given ICU.
External client tokens¶
Additional tokens are created for external clients. These tokens can be of one the following 4 types,
- MAP allows GET access to
/mapendpoint on the WWW server
- STATS allows GET access to
/db/*endpoints on the WWW server as well as
/dashboardendpoint on the backoffice server.
- UPLOAD allows PUT access for the
/db/*endpoint on the WWW server.
- ALL allows all above operations.
Finally, the backoffice server also includes standard password base authentication for administrators.