Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 2.13.7.CR2, 2.13.7.GA
Affects Version/s: None
Component/s: team/eng
Labels:

Blocked:
False
Blocked Reason:
None
Ready:
False
Git Pull Request:
https://github.com/quarkusio/quarkus/pull/29009
[QE] How to address?:
---
Intelligence Requested:
Market:

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

With these changes, the REST Data with Panache extension will propagate the Security annotations within the package `javax.annotation.security` that are defined on your resource interfaces:

```java
import javax.annotation.security.DenyAll;
import javax.annotation.security.RolesAllowed;

@DenyAll
@ResourceProperties
public interface PeopleResource extends PanacheEntityResource<Person, Long>

{ @RolesAllowed("superuser") boolean delete(Long id); }

```

Additionally, if you are only interested in specifying the roles that are allowed to use the resources, the `@ResourceProperties` and `@MethodProperties` annotations have the field `rolesAllowed` to list the security roles permitted to access the resource or operation.

Fix https://github.com/quarkusio/quarkus/issues/28995

is related to

QUARKUS-2788 Support setting the RolesAllowed in the Panache REST Data extension

Closed

Assignee:: Unassigned

Reporter:: Quarkus JIRA Bot

Tester:: Fedor Dudinskii

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2022/12/20 1:15 PM

Updated:: 2023/11/09 4:17 PM

Resolved:: 2023/02/10 12:19 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates