[jira] [Commented] (VCL-1153) add support for personal access tokens to use with web API

Wed, 17 Dec 2025 12:34:06 -0800 


    [ 
https://issues.apache.org/jira/browse/VCL-1153?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18045984#comment-18045984
 ] 

ASF subversion and git services commented on VCL-1153:
------------------------------------------------------

Commit 3992e01dfcb6ab340d1979a59811f98179ce178f in vcl's branch 
refs/heads/VCL-1153_personal_access_tokens from Josh Thompson
[ https://gitbox.apache.org/repos/asf?p=vcl.git;h=3992e01d ]

VCL-1153 - add support for personal access tokens to use with web API

vcl.sql, update-vcl.sql: added personalaccesstoken table

states.php:
-added these states to $noHTMLwrappers and userPreferences:
   - AJaddAccessToken
   - AJdeleteAccessToken
   - AJtokenList

userpreferences.php:
-modified userpreferences: added new "Manage Tokens" section of user preferences
-added AJtokenList
-added AJaddAccessToken
-added AJdeleteAccessToken
-modified printUserprefJavascript: set tokens section to be hidden on page 
load; added call to initTokens

utils.php:
-modified checkAccess: modified conditional checking for 
$_SERVER['HTTP_X_USER'] not being set to also include a check for 
$_SERVER['HTTP_X_AUTHORIZATION'] not being set; added section to validate 
Bearer token if $_SERVER['HTTP_X_AUTHORIZATION'] is set
-added createUserAccessToken
-added deleteUserAccessToken
-added getUserAccessTokens
-added validateUserAccessToken
-modified getDojoHTML: added dijit.form.ValidationTextBox and dijit.form.Button 
to userpreferences mode; added userpreferences and submitgeneralprefs modes to 
block of code that generates javascript header content

vcl.css:
-added .tokenfieldsetbuffer
-added .tokenrow
-added .tokenname
-added .tokenexp
-added .newtoke
-added .newtokenbox

userpreferences.js: initial commit


> add support for personal access tokens to use with web API
> ----------------------------------------------------------
>
>                 Key: VCL-1153
>                 URL: https://issues.apache.org/jira/browse/VCL-1153
>             Project: VCL
>          Issue Type: Improvement
>          Components: database, web gui (frontend)
>            Reporter: Josh Thompson
>            Assignee: Josh Thompson
>            Priority: Minor
>             Fix For: 2.6
>
>
> Personal access tokens are much more commonly used to authenticate when using 
> an API than passing a username and password with every request.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to