Mark A. Matney, Jr.
Mark A. Matney, Jr.
For the canvas in question (labeled "tiered", with the "kiosk" auth pattern specified in [the image resource's info.json](https://test.iiif.library.ucla.edu/iiif/2/testhauthmode1)), the access cookie service still does not seem to be called. I've...
@konklone not time sensitive for me. I'm happy to collaborate on this issue though. I wouldn't be able to take it on entirely myself (not too knowledgeable about law and...
That means that an access cookie was missing from the request to the token service. Side note: we should probably change our server implementation to include the optional description of...
Sorry, slight oversight on my part: I'm guessing that you were seeing [this issue](https://github.com/UCLALibrary/hauth/pull/48), which we fixed a while back but that hadn't been deployed. It is now; can you...
The authentication check applied to the resource on the "tiered" canvas is based on IP address, so in order for you to render the full image when viewing that canvas,...
So for an access cookie obtained from outside the configured allowlist, the XHR for the info.json consistently resulting in HTTP 302 is what I'd expect.