Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Investigate the Resource classes and the exposed REST endpoints #13112

Open
1 task
carina29 opened this issue Jun 6, 2024 · 0 comments
Open
1 task

Investigate the Resource classes and the exposed REST endpoints #13112

carina29 opened this issue Jun 6, 2024 · 0 comments
Labels
change A change of an existing feature (ticket type)

Comments

@carina29
Copy link
Contributor

carina29 commented Jun 6, 2024
edited
Loading

Problem Description

Investigate the Resource classes and the exposed REST endpoints

  • a specific rest endpoint should be accessed only with the proper user rights ( new user rights were introduced in the past and the endpoints are not considering those user rights)

The REST endpoints from the following resource classes should be investigated and the necessary user rights to access the endpoints should be adjusted (where is neccessary):

  • ActionResource
  • AdditionalTestResource
  • AggregateReportResource
  • AreaResource
  • BagExportResource
  • CampaignFormDataResource
  • CampaignFormMetaResource
  • CampaignResource
  • CaseResource
  • ClassificationResource
  • ClinicalVisitResource
  • CommunityResource
  • ContactResource
  • ContinentResource
  • CountryResource
  • CustomizableEnumValueResource
  • DashboardResource
  • DiseaseConfigurationResource
  • DistrictResource
  • DocumentResource
  • EnvironmentResource
  • EnvironmentSampleResource
  • EventGroupResource
  • EventParticipantResource
  • EventResource
  • ExternalSurveillanceToolGatewayResource
  • ExternalVisitsResource
  • FacilityResource
  • FeatureConfigurationResource
  • ImmunizationResource
  • InfoResource
  • InfrastructureResource
  • LabMessageResource
  • LineListingResource
  • OutbreakResource
  • PathogenTestResource
  • PersonResource
  • PointOfEntryResource
  • PrescriptionResource
  • RegionResource
  • SampleResource
  • ShareRequestResource
  • SormasToSormasResource
  • SubcontinentResource
  • SurveillanceReportResource
  • TaskResource
  • TravelEntryResource
  • TreatmentResource
  • UserResource
  • UserRoleResource
  • VisitResource
  • WeeklyReportResource

NOTE: TO BE DEFINED (after investigation) the exact REST endpoints which will need adjustments.

Proposed Change

Investigate the rest endpoints from the mentioned resource classes and check if the called Facade method is annotated with the proper right/rights or other user rights should be added to.

Added Value/Benefit

  • Consistency in the app
  • Security based on the usage of the correct user rights

Acceptance Criteria

  • All the resource classes and endpoints should be investigated and adjusted

Implementation Details

No response

Mockups

No response

Additional Information

No response
@carina29 carina29 added the change A change of an existing feature (ticket type) label Jun 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
change A change of an existing feature (ticket type)
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@carina29