Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

layer query and templates #1588

Open
wants to merge 10 commits into
base: main
Choose a base branch
from
Open

layer query and templates #1588

wants to merge 10 commits into from

Conversation

dbauszus-glx
Copy link
Member

@dbauszus-glx dbauszus-glx commented Oct 21, 2024
edited
Loading

The geojson query template has been flagged as a layer query which requires a layer request parameter.

The getLayer method will attempt to retrieve a layer template from the templates if the layer param is not found in the locale.layers.

@dbauszus-glx dbauszus-glx self-assigned this Oct 21, 2024
@dbauszus-glx dbauszus-glx added Feature New feature requests or changes to the behaviour or look of existing application features. Security Ticket relates to either the authentication process, security headers, and or encryption. labels Oct 21, 2024
@dbauszus-glx dbauszus-glx linked an issue Oct 21, 2024 that may be closed by this pull request
Layer queries and templates #1587
Open
@dbauszus-glx dbauszus-glx marked this pull request as ready for review October 21, 2024 12:31
@dbauszus-glx
Copy link
Member Author

I dismissed the security alert as not relevant. This should be addressed but not in this PR.

The issue is related to the params.user object which is assigned in the API method. User roles may be merged into a layer/template object and an error.message maybe returned from a failed query.

The security of the user object must be controlled in the API module which is yet to be tested and documented.

Message objects returned from failed requests should be escaped which may require a library. I will revise this in the relevant PR. #1309

@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Oct 24, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@RobAndrewHurst RobAndrewHurst Awaiting requested review from RobAndrewHurst

@simon-leech simon-leech Awaiting requested review from simon-leech

At least 1 approving review is required to merge this pull request.

Assignees

@dbauszus-glx dbauszus-glx

Labels
Feature New feature requests or changes to the behaviour or look of existing application features. Security Ticket relates to either the authentication process, security headers, and or encryption. v4.x.x
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Layer queries and templates
2 participants
@dbauszus-glx @RobAndrewHurst