[JOSS Review] Authentication guards for flask_restx APIs

[abhishektiwari]

How is the flask_restx APIs under api folder protected. Unless I am missing something, I don't see authentication or authorisation enforced on these API operations and this could be a security risk.

JOSS Review

[fairdataihub-bot]

Hello! Thank you for opening this issue. Your input is valuable and helps improve the project. Can you please provide a detailed description of the problem you're encountering? Any additional information such as steps to reproduce the issue would be greatly appreciated. Thank you!

[aaronm-2112]

Hi, @abhishektiwari thanks for opening this issue. We have a milestone to address this kind of thing this year but it is being pushed back due to other priorities. For now I will leave this issue open and close it once we have had the time to resolve it.

Thanks you!