Loading...

This issue belongs to an archived project. You can view it, but you can't modify it. Learn more

XML

Word

Printable

Type: Enhancement
Resolution: Obsolete
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Currently the REST server requires authentication but does not offer authorization capabilities. The new REST API described in ~~ISPN-8535~~ requires that invocations on resources can be restricted on a per user/role basis.

Examples:
/GET on /rest/v2/

{cacheName} should be allowed for all authenticated users

/POST on /rest/v2/{cacheName}

should be restricted to users having the ADMIN role

Role MONITOR could have permission only to do GET on /rest/v2/caches/mycache/stats

relates to

ISPN-8736 REST endpoint authorization

Resolved

ISPN-9688 Internal REST server modularization

Closed

Assignee:: Unassigned

Reporter:: Gustavo Fernandes (Inactive)

Archiver:: Amol Dongare

Created:: 2018/11/12 6:01 AM

Updated:: 2024/11/27 2:52 PM

Resolved:: 2024/11/27 2:52 PM

Archived:: 2024/11/28 6:21 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

PagerDuty