Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Implement fine grained privileges #188

Open
bfabio opened this issue Nov 26, 2022 · 0 comments
Open

Implement fine grained privileges #188

bfabio opened this issue Nov 26, 2022 · 0 comments
Labels
enhancement New feature or request
Milestone

Comments

@bfabio
Copy link
Member

bfabio commented Nov 26, 2022

The bearer tokens should support scoping at creation time to limit the token's permission just to certain actions.

@bfabio bfabio added the enhancement New feature or request label Nov 26, 2022
@bfabio bfabio added this to the 1.0 milestone Nov 26, 2022
bfabio added a commit to bfabio/developers-italia-api that referenced this issue Mar 7, 2024
SECURITY NOTE:
This doesn't implement any authorization on resources, which is good
*for now* as you either have the ability to write to resources or not
have it.

That MUST be implemented when there will be multiple write tokens with
different scopes.
(See italia#188)
bfabio added a commit to bfabio/developers-italia-api that referenced this issue Mar 9, 2024
Implement JSON Patch (https://datatracker.ietf.org/doc/html/rfc6902)
for Software resource and bump the json-patch library.

SECURITY NOTE:
This doesn't implement any authorization on resources, which is good
*for now* as you either have the ability to write to resources or not
have it.

That MUST be implemented when there will be multiple write tokens with
different scopes.
(See italia#188)
bfabio added a commit to bfabio/developers-italia-api that referenced this issue Mar 9, 2024
Implement JSON Patch (https://datatracker.ietf.org/doc/html/rfc6902)
for Software resource and bump the json-patch library.

SECURITY NOTE:
This doesn't implement any authorization on resources, which is good
*for now* as you either have the ability to write to resources or not
have it.

That MUST be implemented when there will be multiple write tokens with
different scopes.
(See italia#188)
bfabio added a commit to bfabio/developers-italia-api that referenced this issue Mar 9, 2024
Implement JSON Patch (https://datatracker.ietf.org/doc/html/rfc6902)
for Software resource and bump the json-patch library.

SECURITY NOTE:
This doesn't implement any authorization on resources, which is good
*for now* as you either have the ability to write to resources or not
have it.

That MUST be implemented when there will be multiple write tokens with
different scopes.
(See italia#188)
bfabio added a commit to bfabio/developers-italia-api that referenced this issue Mar 9, 2024
Implement JSON Patch (https://datatracker.ietf.org/doc/html/rfc6902)
for Software resource and bump the json-patch library.

SECURITY NOTE:
This doesn't implement any authorization on resources, which is good
*for now* as you either have the ability to write to resources or not
have it.

That MUST be implemented when there will be multiple write tokens with
different scopes.
(See italia#188)
bfabio added a commit that referenced this issue Mar 9, 2024
Implement JSON Patch (https://datatracker.ietf.org/doc/html/rfc6902)
for Software resource and bump the json-patch library.

SECURITY NOTE:
This doesn't implement any authorization on resources, which is good
*for now* as you either have the ability to write to resources or not
have it.

That MUST be implemented when there will be multiple write tokens with
different scopes.
(See #188)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

1 participant