Uploaded image for project: 'AeroGear'
  1. AeroGear
  2. AEROGEAR-7677

Add permission checks to the endpoints

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Major Major
    • None
    • None
    • None

      Trello link

      We are using openshift-oauth-proxy to authenticate users.

      Based on the current endpoints, the current permissions are required:

      • read permission on serviceinstances, builds, buildconfigs
      • edit permission on mobileclient CRD

      To keep things simple, let's add a permission check (perhaps in the oauth-proxy) to make sure the user have the edit permission on the namespace in order to use the service.

      After that, we can also check if it's possible to perform permission checks at per-endpoint level (but this is a stretch goal for this task).

          There are no Sub-Tasks for this issue.

              weil@redhat.com Wei Li (Inactive)
              lfitzger@redhat.com Laura Fitzgerald
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: