nethvoice-report
This repo contains Queue and CDR/Costs reports
Authentication and authorization
Access to Nethvoice reports is granted to system users using PAM and JWT.
Login process
- Username and password are validated with PAM
- User authorizations (granted queues and groups) are read from a file handled by NethCTI (
/opt/nethvoice-report/queue/user_authorizations.json
by default) - A JWT token encapsulating user identity and authorizations is created and returned to client
- The client will enclose this token in subsequent report requests
Login requests are handled by Authenticator
and PayloadFunc
functions in middleware.go
Report request
- The client enclose JWT token in every report request
- JWT data (user identity, queues and groups granted) is extracted from the token
- Authorization check is performed to ensure that client can access requested report
Report requests are handled by IdentityHandler
and Authorizator
functions in middleware.go
Enable debug on api daemon
As default, the api daemon runs using GIN_MODE=release
.
To switch on debug mode, just execute:
echo GIN_MODE=debug > /etc/sysconfig/nethvoice-report