Set ACL rule for custom endpoint

heyarne · March 10, 2019, 6:11pm

Hey there! I love cockpit so far, it was super fast for me to set up a simple API.
I’d like to extend that API a bit and issue more complex queries (such as getting collection items in a bounding box). I understand that I can place something into config/api/test.php and call it via /api/test?token=.... That’s super neat!

Can I somehow make this endpoint public? If not, how would I configure an access token to be able to access this endpoint? I didn’t find any very good information on the ACL syntax unfortunately. Thanks for any help!

wuh · March 10, 2019, 6:46pm

Just create a custom key with all the rules you want public in there - you can add the endpoint to those rules. For example:

/api/collections/get
/api/singletons/*
/api/cockpit/image/*

heyarne · March 11, 2019, 9:40pm

Thanks, that worked perfectly fine!

artur · March 11, 2019, 10:19pm

config/api/public/test.php doesn’t require an api token.

the request would then look like this:

/api/public/test

heyarne · March 12, 2019, 11:17am

Nice, also very helpful! So I guess everything in /api/public/* is public by default (well, duh)? I might add this to the cockpit-snippets repository which already contains a lot of helpful information.

Topic		Replies	Views
Quick api question General	4	1132	November 27, 2019
How to add custom logic to endpoints Support	3	922	January 21, 2022
How to create custom API Endpoints Support	9	4465	April 26, 2019
How to create protected custom API end points? Cockpit v2	2	285	October 3, 2023
Custom Endpoint - Fetch collection in database Support	4	99	June 20, 2024

Set ACL rule for custom endpoint

Related Topics