Versions Compared

Old Version 9

changes.mady.by.user Peter James

Saved on

compared with

New Version Current

changes.mady.by.user Peter James

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 4.0

Q. Is our proprietary WMS source (e.g. aerial photography) in our public Weave site accessible by public users to exploit?
 
A. Technically speaking - yes. Users can decode the URLs, but the effort required to do this and gain access to data would be so huge as to make it not worth the effort. When  When a map is requested from the browser it uses Weave own internal message format to communicate with the server.  This format is loosely based around the REST standard.  To make it harder for people to gain access to the maps from outside Weave we have deliberately not used a well-known standard like WMS or ArcGIS Servers REST API. Weave client URLs do not have the layer name actually listed, instead it uses layer numbers. When translating the request at the server Weave will use the layer identifiers to call the appropriate layer matching that ID. To make things more secure the layer identifiers can also change over time.