Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add CBS/PSI strategy #80

Open
nichtich opened this issue Feb 8, 2021 · 3 comments
Open

Add CBS/PSI strategy #80

nichtich opened this issue Feb 8, 2021 · 3 comments
Labels
feature undefined

Comments

@nichtich
Copy link
Member

nichtich commented Feb 8, 2021
edited
Loading

To authentificate against the CBS library system.

Basically it's a simple HTTP request

POST https://kxp.k10plus.de/login/LOGIN
USER_KEY=...
PASSWORD=...

And inspect the returned Header

X-PSI-Context: LOGIN_REJECT

or

X-PSI-Context: RELOCATE

followed by

X-PSI-Context: MAIN

The user name is hidden in the response XML (XML interface) or HTML (HTML interface).

Configuration via base URL (e.g. https://kxp.k10plus.de/)

{
   "strategy": "psi",
   "name": "Gemeinsamer Verbundkatalog (GVK)",
   "url": "https://kxp.k10plus.de/"
}

URL for the POST request and user URI template can be derived from url as {url}/login/LOGIN and {url}/user/{id} (the latter not supported as URL by PSI but can be used as URI).
@nichtich nichtich changed the title Add CBS strategy Add CBS/PSI strategy Feb 8, 2021
@nichtich nichtich added the feature undefined label Feb 8, 2021
@nichtich
Copy link
Member Author

nichtich commented Feb 22, 2023
edited
Loading

This includes two use cases

  • login via user account
  • login as an authenticated librarian at a specific library (as used in WinIBW)

The latter checks given username & password and returns the library (for instance http://uri.gbv.de/organization/isil/DE-7), the account belongs to, so individual accounts are anonymous. Login might be required to be protected against brute-force attack.

@nichtich nichtich mentioned this issue Mar 3, 2023
Open
@nichtich
Copy link
Member Author

Will not be implemented as part of login-server but as script to be used with #117.

@nichtich nichtich closed this as not planned Won't fix, can't repro, duplicate, stale Sep 11, 2024
@nichtich nichtich mentioned this issue Sep 11, 2024
Closed
@stefandesu
Copy link
Member

Currently, a separate API endpoint is in development for us to use for this, so I would much rather implement this as its own strategy instead of using the Script strategy.

@stefandesu stefandesu reopened this Nov 26, 2024
stefandesu added a commit that referenced this issue Nov 26, 2024
@stefandesu
Add experimental CBS strategy
c942759 
Currently doesn't (or rather can't) confirm that the user actually has write privileges. Also this will likely change before being merged into main.

See #80 and gbv/coli-rich-web#1.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature undefined
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@nichtich @stefandesu