twitcher
twitcher copied to clipboard
bird-house
Security Proxy for Web Processing Services (WPS)
## Describe the bug We have noticed intermittant netcdf read errors when accessing opendap links in the PAVICS jupyterhub. Approximate date when the problem began ~ March 01 2023 ##...
## Describe the bug Recent updates to twitcher (or possibly magpie) break previous workflows for accessing group protected datasets on PAVICS. Code will successfully navigate thredds and create xarray datasets...
## Describe the bug Twitcher is constantly taking lots of Memory. Note below Twitcher is taking 23G of memory, while the front proxy only 30M, while having similar "NET I/O"....
Resolves multiple attack methods through XML: https://pypi.org/project/defusedxml/#python-xml-libraries Replacement seems relatively straighforward https://pypi.org/project/defusedxml/#defusedxml
Twitcher version `pavics/twitcher:magpie-3.12.0` (from PAVICS stack https://github.com/bird-house/birdhouse-deploy/tree/1.13.6). When trying to access https://pavics.ouranos.ca/thredds/ it was completely unresponsive. That link goes through the Nginx proxy, then Twitcher, then Thredds itself. Nginx was...
`WWW-Authenticate` header should _always_ be returned in the response when 401 occurs from a missing AuthN/AuthZ headers. https://tools.ietf.org/html/rfc2617#section-3.2.1 This would allow web browsers to popup a login window to enter...
We need to collect service usage information to provide service usage metrics/statistics in Copernicus. This information can be stored in a database (using SQLAlchemy), similar to PyWPS: http://birdhouse-workshop.readthedocs.io/en/latest/pywps/logging.html
@cehbrecht and @fmigneault I wanted to get your thoughts before submitting a PR. If you look at this commit, I explain roughly why I think twitcher shouldn't allow redirects: https://github.com/bird-house/twitcher/commit/6e8203a3e79998de505e5a0f51c4f47119283311...
In ESGF we want to use [Keycloak](https://www.keycloak.org/) as OAuth identity provider. Twitcher needs to be extended to be able to validate access tokens generated by keycloak (verify token request ...).
notebooks can be rendered by sphinx: https://sphinx-nbexamples.readthedocs.io/en/latest/
Metadata
Owner
Metadata
Security Proxy for Web Processing Services (WPS)