[DAS] Re: DAS security

Lincoln Stein lstein at cshl.edu
Wed Sep 24 11:47:48 EDT 2003 

If the Ensembl DAS layer still uses my Bio::Das module, then you should be 
able to provide DAS urls in this form:

	http://fred:secret_password@www.myserver.com/cgi-bin/das/......

Where www.myserver.com expects a username of "fred" and a secret password of 
"secret_password".

Also you can use https for SSL connections so that the password isn't exposed 
in cleartext.

Lincoln


On Tuesday 23 September 2003 05:59 am, Tony Cox wrote:
> On Tue, 23 Sep 2003, Warren, Jonathan wrote:
>
> +>Hi
> +>
> +>We have ensembl and Dazzle installed locally and have internal IP issues
> +>where some groups are not supposed to be allowed to see certain tracks.
>
> There is no built in security model in Ensembl (although this is not to say
> Ensembl is built without regard to security!)
>
> Since it has always been an open source/data project we have not engineered
> a system for hiding some data form a subset of users.
>
> I think you would have to use either a proxy layer to filter data by IP
> address ranges or else you will have to embed some IP-based track switching
> in the drawing code.
>
> We'd be very interested to know if you come up with a nice solution!
>
> regards
>
> Tony
>
>
> +>Where is the best place to change the ensembl code to restrict access to
> +>only certain DSNs (if a change in the code is needed?). Is there one
> +>place that would stop people using the "Manage Sources" menu and would
> +>allow us to restrict the DAS sources currently configured in our
> +>HomoSapiens.ini file to certain users?
> +>
> +>Cheers
> +>
> +>Jonathan
> +>
> +>
> +>
> +>=======================================================================
> +>Attention: The information contained in this message and/or attachments
> +>from AgResearch Limited is intended only for the persons or entities
> +>to which it is addressed and may contain confidential and/or privileged
> +>material. Any review, retransmission, dissemination or other use of, or
> +>taking of any action in reliance upon, this information by persons or
> +>entities other than the intended recipients is prohibited by AgResearch
> +>Limited. If you have received this message in error, please notify the
> +>sender immediately.
> +>=======================================================================
> +>
>
> ******************************************************
> Tony Cox			Email:avc at sanger.ac.uk
> Sanger Institute		WWW:www.sanger.ac.uk
> Wellcome Trust Genome Campus	Head,Software Services
> Hinxton				Tel: +44 1223 834244
> Cambs. CB10 1SA			Fax: +44 1223 494919
> ******************************************************
> _______________________________________________
> DAS mailing list
> DAS at biodas.org
> http://biodas.org/mailman/listinfo/das

-- 
========================================================================
Lincoln D. Stein                           Cold Spring Harbor Laboratory
lstein at cshl.org			                  Cold Spring Harbor, NY
========================================================================

More information about the DAS mailing list