Align security scope with guideline #193

bigludo7 · 2024-05-07T14:04:00Z

Problem description
As described in recent merged PR177 in commonalities we have to update the security part, openId defined scope in geofencing-subscriptions yaml.

for GET we must have:

Expected behaviorcamaraproject/Commonalities#177

For GET & GET {id} we must have

security:
        - openId:
              - geofencing-subscriptions:read

for DELETE:

security:
        - openId:
              - geofencing-subscriptions:delete

For POST

security:
        - openId:
              - geofencing-subscriptions:org.camaraproject.geofencing.v0.area-entered:create
              - geofencing-subscriptions:org.camaraproject.geofencing.v0.area-left:create

Alternative solution

Additional context
@maxl2287 probably for you as you maintain this yaml ;)

The text was updated successfully, but these errors were encountered:

jlurien · 2024-05-08T11:30:18Z

@bigludo7, if API is renamed to geofencing-subscriptions, should we have to rename as well events to org.camaraproject.geofencing-subscriptions.v0.area-...?

bigludo7 added the correction label May 7, 2024

maxl2287 mentioned this issue May 7, 2024

update base-path & security-scope for geofencing-subscriptions #191

Merged

3 tasks

bigludo7 closed this as completed in #191 Jun 4, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Align security scope with guideline #193

Align security scope with guideline #193

bigludo7 commented May 7, 2024

jlurien commented May 8, 2024

Align security scope with guideline #193

Align security scope with guideline #193

Comments

bigludo7 commented May 7, 2024

jlurien commented May 8, 2024