Hi all, We are currently developing visualisation mash-up that allows the user to choose from a number of graphs, then loads the data for the selected data (using MashupPlatform.http.makeRequest) and feeds the loaded data to flotr2 graph. In our current implementation, both the list of available graphs and the data for each graph is stored on an open web server without any authentication, so anyone who knows the URI can see the data. Currently this is OK but we'd like to use the same set-up also for showing confidential information. For that, we need to implement some kind of access control so, that the data is only available through the Wirecloud mash-up. Some possibilities that come to mind: 1) Some kind of secret token that is sent alongside the request. This would probably require special web server support. 2) HTTP authentication on the web server. User would somehow authenticate on the server order to gain access to the files. Two problems here: i) Requires explicit logon to the data http server ii) Logon info (cookie?) needs to be handed over to Wirecloud and passed over on subsequent MashupPlatform http requests. We don't know if this is even possible 3) OAuth. Our Wirecloud installation would use the web server for access control so that the user would automatically get a OAuth token when he logs on Wirecloud. This probably requires some extra support from Wirecloud. Is any of these options doable? If not, maybe some other? Thanks for any info, Kimmo Surakka for Fourdeg / INCENSe
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy