Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-969

Filter ActiveDocs 3scale API auto-fill according to member permissions

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Major
    • None
    • 2.2 CR2
    • System

    Description

      This issue is forked from https://issues.jboss.org/browse/THREESCALE-628 and it is issue in Activedocs for 3scale API docs. Please look at https://issues.jboss.org/browse/THREESCALE-628?focusedCommentId=13583534&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-13583534 for details.

      There are issues at ActiveDocs pages:

      In Swagger "Simple Echo API" example user can see list of services including services which should be hidden for user because he/she is no authorized to see them
      In 3scale-admin.domain/p/admin/api_docs user who is not authorized for that(only member permission, all "This user can access" unmarked) can see for example list of users for "User Read" -> account id or id

      Attachments

        Issue Links

          is related to

          Bug - A problem that impairs or prevents the functions of the product. THREESCALE-628 Filter ActiveDocs auto-fill according to member permissions

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              Unassigned Unassigned
              mkudlej@redhat.com Martin Kudlej
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: