you mentioned in your reply that, except one case (/products/), all the other endpoints do not require authentication right now. They would be required in the subsequent version.
Does that mean, that (until the updated Version is available) anyone who knows the IP of a specific VM can possibly manipulate the Sen4CAP System via the endpoint services, like starting or stopping the download? If yes, this would cause serious security concern which could lead to the decision not to use Sen4CAP within our PAs monitoring system. Is there a way to prevent unwanted access? I expect this is also relevant for other countries/PAs.
I would like to mention that our Sen4CAP system is running on CREODIAS.
Can you tell me when we can expect the mentiones new version, which requires authentication for all endpoints?
Apart from this, I am not able to call some endpoints, because the provided description of their parameters is not so clear and not detailed enough for me. For example, I want to call the “/parcel” action, but I don’t know what the parameter “practice” means, and which possible values can be given to this parameter. I would strongly appreciate if you could provide us with more information in the API description.