-
Notifications
You must be signed in to change notification settings - Fork 25
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
layer query and templates #1588
base: main
Are you sure you want to change the base?
Conversation
I dismissed the security alert as not relevant. This should be addressed but not in this PR. The issue is related to the params.user object which is assigned in the API method. User roles may be merged into a layer/template object and an error.message maybe returned from a failed query. The security of the user object must be controlled in the API module which is yet to be tested and documented. Message objects returned from failed requests should be escaped which may require a library. I will revise this in the relevant PR. #1309 |
Quality Gate passedIssues Measures |
The geojson query template has been flagged as a layer query which requires a layer request parameter.
The getLayer method will attempt to retrieve a layer template from the templates if the layer param is not found in the locale.layers.