Providing authentication and authorization for the vanilla pygeoapi. It does this by placing the pygeoapi behind a Caddy reverse proxy, which handles forward authentication and authorization with Authelia.
This project is a Dockerized application, and Docker Compose is used for the orchestration of the multiple services. The application's configuration is found in the docker-compose.yml and Caddyfile files.
- Docker and Docker Compose installed on your machine.
- Permission to edit
/etc/hostsfile.
- Edit
/etc/hostsFile: Add the following entries to your/etc/hostsfile:
127.0.0.1 pygeoapi.local
127.0.0.1 app.pygeoapi.localThis step is necessary to resolve the local domains used in the Caddyfile.
- Start the Services: From the root directory of the project, start all the services using Docker Compose with the following command:
docker-compose up -dThis command pulls the necessary Docker images and starts the services defined in docker-compose.yml.
For testing the deployment, you can use the following users and endpoints.
Users:
- User 1: yharby, Password: cartologic
- User 2: francbartoli, Password: francbartoli
Endpoints:
-
Endpoint 1: https://app.pygeoapi.local/api/collections/obs
Accessible by: yharby
-
Endpoint 2: https://app.pygeoapi.local/api/collections/lakes
Accessible by: francbartoli
-
Endpoint 3: https://app.pygeoapi.local/api
Accessible by: yharby and francbartoli
Please note that the password and user groups have been hashed for security reasons. The hashed passwords provided in the users_database.yml file are cartologic for yharby and francbartoli for francbartoli.
This project is inspired by the fastgeoapi