Skip to content
This repository was archived by the owner on Aug 4, 2018. It is now read-only.

Access Control

Jump to bottom
Fingercomp edited this page Nov 27, 2016 · 5 revisions

Some routes of the app are protected with the authorization policy. This page lists all access control entries of the app.

Prefix ~ means a group. Prefix @ means a user.

Context Method Action Target Permissions Comment
* None ALLOW ~admins ALL_PERMISSIONS All permissions.
* None ALLOW ~system ALL_PERMISSIONS All permissions.
Package GET ALLOW Everyone pkg_view Allow to retrieve a package.
Package DELETE ALLOW Package owners pkg_delete Allow to delete a package.
Package PATCH ALLOW Package owners pkg_update Allow to update a package.
Packages GET ALLOW Everyone pkgs_view Allow to retrieve the list of packages.
Packages POST ALLOW Authenticated pkg_create Allow to create a package.
Users GET ALLOW Everyone user_list Allow to retrieve the list of users.
User GET ALLOW Theirselves user_get Allow to retrieve the user details.
User PATCH ALLOW Theirselves user_update Allow to update non-admin-only fields.
* None DENY ~banned pkg_create Disallow creating new packages.
* None DENY ~banned ALL_PERMISSIONS Disallow remaining permissions.

Changes

Version Changes
3.2.0 Added user_update permission.
3.1.0 Added group ~banned.
Clone this wiki locally