##// END OF EJS Templates
bower: fix iron-ajax hash.
bower: fix iron-ajax hash.

File last commit:

r2122:de425417 default
r2382:e3aee064 default
Show More
permissions_auth_token_access.mako
64 lines | 1.6 KiB | application/x-mako | MakoHtmlLexer
/ rhodecode / templates / admin / permissions / permissions_auth_token_access.mako
<div class="panel panel-default">
<div class="panel-heading">
<h3 class="panel-title">${_('View whitelist')}</h3>
</div>
<div class="panel-body">
<div class="">
<p class="pr-description">
View white list defines a set of views that can be accessed using auth token without the need to login.
Adding ?auth_token = SECRET_TOKEN to the url authenticates this request as if it
came from the the logged in user who owns this authentication token.
E.g. adding `RepoFilesView.repo_file_raw` allows to access a raw diff using such url:
http[s]://server.com/{repo_name}/raw/{commit_id}/{file_path}?auth_token=SECRET_TOKEN
White list can be defined inside `${c.whitelist_file}` under `${c.whitelist_key}=` setting
Currently the following views are set:
</p>
<pre>
% for entry in c.whitelist_views:
${entry}
% endfor
</pre>
</div>
</div>
</div>
<div class="panel panel-default">
<div class="panel-heading">
<h3 class="panel-title">${_('List of views available for usage in whitelist access')}</h3>
</div>
<div class="panel-body">
<div class="">
<table class="rctable ip-whitelist">
<tr>
<th>Active</th>
<th>View FQN</th>
<th>URL pattern</th>
</tr>
% for route_name, view_fqn, view_url, active in c.view_data:
<tr>
<td class="td-x">
% if active:
${h.bool2icon(active)}
% endif
</td>
<td class="td-x">${view_fqn}</td>
<td class="td-x" title="${route_name}">${view_url}</td>
</tr>
% endfor
</table>
</div>
</div>
</div>