Extension Accesscontrol

Extension Basics

Title	Accesscontrol
Name	ckanext-accesscontrol
Type	Public extension
Description	An extension for CKAN providing OpenID Connect authentication and role-based access control.
CKAN versions	~2.8.2 Show details These CKAN Versions are exactely matched: 2.8.10 2.8.11 2.8.12 2.8.2 2.8.3 2.8.4 2.8.5 2.8.6 2.8.7 2.8.8 2.8.9
Download-Url (zip)	https://github.com/SAEONData/ckanext-accesscontrol.git#egg=ckanext-accesscontrol
Last commit	5 years ago (2020-11-18 05:47:53)
Url to repo	https://github.com/SAEONData/ckanext-accesscontrol
Category	Authentication & Security

Background Infos

Description (long)

Show details

ckanext-accesscontrol

An extension for CKAN providing OpenID connect authentication and role-based access control.

Requirements

This extension has been developed and tested with CKAN version 2.8.2.

Redis is required for maintaining login state information.

Installation

Activate your CKAN virtual environment:

. /usr/lib/ckan/default/bin/activate

Install the latest development version of ckanext-accesscontrol and its dependencies:

cd /usr/lib/ckan/default
pip install -e 'git+https://github.com/SAEONData/ckanext-accesscontrol.git#egg=ckanext-accesscontrol'
pip install -r src/ckanext-accesscontrol/requirements.txt

In a production environment, you’ll probably want to pin a specific release version instead, e.g.:

pip install -e 'git+https://github.com/SAEONData/ckanext-accesscontrol.git@v1.0.0#egg=ckanext-accesscontrol'

Create the database tables for the roles plugin, if required:

cd /usr/lib/ckan/default/src/ckanext-accesscontrol
paster roles initdb -c /etc/ckan/default/development.ini

Add roles and/or openidconnect, as required, to the list of plugins in your CKAN configuration file (e.g. /etc/ckan/default/production.ini):

ckan.plugins = ... roles openidconnect

Restart your CKAN instance.

Configuration

The following options are applicable to the openidconnect plugin. Where a default is not defined, a value must be set in the configuration file.

Option	Default	Description
ckan.openidconnect.authorization_endpoint		Auth service authorization endpoint (URL).
ckan.openidconnect.token_endp

Version

1.0.0-beta

Version release date

2020-06-12

Contact name

(not set)

Contakt email

(not set)

Contact Url

(not set)

Installation Guide

Configuration hints	Activate your CKAN virtual environment: `. /usr/lib/ckan/default/bin/activate` Install the latest development version of ckanext-accesscontrol and its dependencies: `cd /usr/lib/ckan/default pip install -e 'git+https://github.com/SAEONData/ckanext-accesscontrol.git#egg=ckanext-accesscontrol' pip install -r src/ckanext-accesscontrol/requirements.txt` In a production environment, you’ll probably want to pin a specific [release version](https://github.com/SAEONData/ckanext-accessc
Plugins to configure (ckan.ini)	roles openidconnectRestart your CKAN instance
CKAN Settings (ckan.ini)
DB migration to be executed	(not set)

<< back to Extensions