[Feature] Support more explicit permissions on ServiceAPI #334

fmigneault · 2020-05-15T17:09:10Z

Service of type ServiceAPI allows read/write/read-match/write-match permissions.

It should be extended to allow explicit permissions as standard request methods, ie: GET, POST, DELETE, PUT, etc. since this is what it already filters, but combining multiple method types under read/write categories

For backward compatibility reasons, the original 4 permissions should remain.
The service would then need to validate for example that GET request is granted access if either combination between explicit GET or read-category (on any parent route) or GET-match/read-match (on exact route) is given.
An admin who desires to restrict more granular permissions would have more flexibility to do so with whichever variant better fits his need.

The text was updated successfully, but these errors were encountered:

fmigneault · 2020-07-24T21:01:39Z

relates to #342

fmigneault added the feature New feature to be developed label May 15, 2020

fmigneault self-assigned this May 15, 2020

fmigneault added the enhancement Improvements in term of performance or behaviour label May 15, 2020

fmigneault mentioned this issue May 15, 2020

[Feature] Add tooltip details to some items #335

Open

5 tasks

fmigneault mentioned this issue Jul 27, 2020

[Feature] Improve user/group permissions scheme #342

Closed

fmigneault added this to the Backlog milestone May 5, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Feature] Support more explicit permissions on ServiceAPI #334

[Feature] Support more explicit permissions on ServiceAPI #334

fmigneault commented May 15, 2020

fmigneault commented Jul 24, 2020

[Feature] Support more explicit permissions on ServiceAPI #334

[Feature] Support more explicit permissions on ServiceAPI #334

Comments

fmigneault commented May 15, 2020

fmigneault commented Jul 24, 2020