# HG changeset patch # User Sebastien Jodogne # Date 1762950235 -3600 # Node ID 79af518c92194d6578df1e641dc192d147fddec7 # Parent bf074286336749b9bd7e4e567690daac04b0ce37 fix spelling of Rest API as REST API diff -r bf0742863367 -r 79af518c9219 NEWS --- a/NEWS Wed Nov 12 13:16:50 2025 +0100 +++ b/NEWS Wed Nov 12 13:23:55 2025 +0100 @@ -8,7 +8,7 @@ 2025-10-10 - v 0.10.2 ===================== -* New default permissions to add/delete modalities through the Rest API +* New default permissions to add/delete modalities through the REST API https://discourse.orthanc-server.org/t/managing-modalities-using-the-rest-api-and-keycloak/6137 * New standard configuration "stl" @@ -251,9 +251,9 @@ * new user-permission based authorization model. This is enabled if you define the new "WebServiceUserProfileUrl" configuration. * new "orthanc-explorer-2" StandardConfigurations -* new GET "auth/user/profile" Rest API route to retrieve user permissions -* new PUT "auth/tokens/{token-type}" Rest API route to create tokens -* new POST "auth/tokens/decode" Rest API route to decode tokens +* new GET "auth/user/profile" REST API route to retrieve user permissions +* new PUT "auth/tokens/{token-type}" REST API route to create tokens +* new POST "auth/tokens/decode" REST API route to decode tokens * these 3 new routes required an updated auth-web-service. * SECURITY FIX: in prior versions, it was possible to browse remote dicom-web servers without being authenticated. (The API routes diff -r bf0742863367 -r 79af518c9219 Plugin/DefaultConfiguration.json --- a/Plugin/DefaultConfiguration.json Wed Nov 12 13:16:50 2025 +0100 +++ b/Plugin/DefaultConfiguration.json Wed Nov 12 13:23:55 2025 +0100 @@ -138,7 +138,7 @@ // audit-logs ["get", "^/auth/audit-logs$", "admin-permissions|audit-logs"], - // add-delete modalities through the Rest API + // add-delete modalities through the REST API ["put", "^/modalities/(.*)$", "admin-permissions"], ["delete", "^/modalities/(.*)$", "admin-permissions"],