...
The security bypass for REST endpoint is accomplished by supplying an alternate ModeShape authentication provider for servlet credentials. This servlet authentication provider permits all actions at the modeshape Modeshape level and does not use a PEP (Policy Enforcement Point).
Step-by-Step
...
Configuration
- If you previously configured a PEP, open your repo.xml file and remove any beans that are instances of "org.fcrepo.auth.common.ServletContainerAuthenticationProvider".
- Also remove the PEP bean, if one was configured.
- Remove the depends-on attribute on the modeshapeRepofactory bean, if there is one.
- Open your repository.json file
- Under security, configure the "BypassSecurityServletAuthenticationProvider", as shown in the example below.
| Code Block | ||||
|---|---|---|---|---|
| ||||
"security" : { |
...
"anonymous" : { |
...
"roles" : ["readonly","readwrite","admin"], |
...
"useOnFailedLogin" : false |
...
}, |
...
"providers" : [ |
...
{ "classname" : "org.fcrepo.auth.commons.BypassSecurityServletAuthenticationProvider" } |
...
] |
...
}, |