Are element84's STAC API transaction endpoints exposed?
7 views
Skip to first unread message
Robert Dennett
Nov 25, 2025, 10:45:48 PM (3 days ago) Nov 25
to STAC Community, rob.d...@twdb.texas.gov
I didn't want to try this to see if it would break or not, but I can't tell if their mutating endpoints, e.g. https://earth-search.aws.element84.com/v1/api.html#tag/Transaction/operation/postFeature require any sort of authentication. The docs don't mention any 403 errors. If it is protected, how do they do it? By fronting it with stac-auth-proxy or something?
Thanks,
Rob
Pete Gadomski
Nov 26, 2025, 7:28:26 AM (2 days ago) Nov 26
to Robert Dennett, STAC Community, rob.d...@twdb.texas.gov
I don't think you can post or otherwise hit those endpoints with anything but GET ... I just tried 🙈 (with a no-op payload) and got a 404. It's likely that the docs are just wrong.
They use this repo to track issues, if you want to let them know: https://github.com/Element84/earth-search/
Cheers,
Pete
--
You received this message because you are subscribed to the Google Groups "STAC Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to stac-communit...@cloudnativegeo.org.
To view this discussion visit https://groups.google.com/a/cloudnativegeo.org/d/msgid/stac-community/7543ded0-3a81-42d3-8bfc-35694092348cn%40cloudnativegeo.org.
For more options, visit https://groups.google.com/a/cloudnativegeo.org/d/optout.
--
Ian Cooke
Nov 26, 2025, 10:10:24 AM (2 days ago) Nov 26
to Pete Gadomski, Robert Dennett, STAC Community, rob.d...@twdb.texas.gov
Thanks for fielding that, Pete! Yes, transaction endpoints are not exposed. There is a snippet in the readme* on stac-server for how you control those permissions. As Pete suggests, post your use-case over there for a discussion.
To view this discussion visit https://groups.google.com/a/cloudnativegeo.org/d/msgid/stac-community/CAPGB2SoHq0S%2Bu_avMBJREajdrnZf97bGq8OdVKaG_VMs%3DqOssQ%40mail.gmail.com.
Rob Dennett
Nov 27, 2025, 8:14:01 PM (15 hours ago) Nov 27
to Ian Cooke, Pete Gadomski, Robert Dennett, STAC Community
Thanks. Rather than whitelisting certain addresses, I intend to use Cognito allow users to login in order to access certain endpoints. My app is based on stac-fastapi-pgstac, and it looks like I am going to have to either figure out how to modify the code
to require login for certain endpoints or to use a reverse proxy like stac-auth-proxy.
Thanks,
Rob
From: Ian Cooke <ico...@element84.com>
Sent: Wednesday, November 26, 2025 9:10 AM
To: Pete Gadomski <pe...@developmentseed.org>
Cc: Robert Dennett <rtem...@gmail.com>; STAC Community <stac-co...@cloudnativegeo.org>; Rob Dennett <Rob.D...@twdb.texas.gov>
Subject: Re: Are element84's STAC API transaction endpoints exposed?
Sent: Wednesday, November 26, 2025 9:10 AM
To: Pete Gadomski <pe...@developmentseed.org>
Cc: Robert Dennett <rtem...@gmail.com>; STAC Community <stac-co...@cloudnativegeo.org>; Rob Dennett <Rob.D...@twdb.texas.gov>
Subject: Re: Are element84's STAC API transaction endpoints exposed?
External: Beware of links/attachments.
Reply all
Reply to author
Forward
0 new messages