Authorization plugin with stone

lincoln · February 22, 2026, 8:59pm

Good afternoon, I’m starting with Orthanc.

I installed the authorization plugin and pass a token in the URL to open the StoneWebViewer preview. After several readings and configurations, Stone starts to open and these errors appear in the attached images.

cannot access: https://10.0.0.196/api/estudos/pacs-viewer/dicom-web/series?0020000D=1.3.12.2.1107.5.5.9.356422.20260213153252.665549&includefield=00081030,00200011

orthanc.json: {
“Name”: “MyOrthanc”,
“RemoteAccessAllowed”: true,

“AuthenticationEnabled”: false,
“Plugins”: [
“/usr/local/share/orthanc/plugins”
],
“Authorization”: {
“WebService”: “http://172.18.0.1:3000/api/estudos/auth-orthanc”,
“AllowLocalUnauthenticated”: false,

“TokenHttpHeaders”: [ “token” ],//“auth-token”, “authorization”, “token”

“TokenGetArguments”: [ “token” ], //auth-token works

“CacheSize”: 100,

“CacheExpiration”: 30,

“WebServiceTokenValidationUrl” : “http://172.18.0.1:3000/api/estudos/auth-orthanc”,
“StandardConfigurations”: [
“osimis-web-viewer”,
“stone-webviewer”,

“orthanc-explorer-2”

]

Inside the API I read the token and grant access with granted: true,

If I grant access to all routes in the link it opens, but it’s not secure this way.

alainmazy · February 23, 2026, 4:26pm

Hi,

We are not able to analyze your issue unless you provide a minimal reproducible setup.

This setup can be a good starting point.

Best,

Alain

lincoln · February 23, 2026, 8:22pm

Thank you! I’ll study this setup.