Ivo Ladage - van Doorn created AMDATUAUTH-121:
-------------------------------------------------
Summary: Investigate alternative to hard coded 'isAdministrator'
check in UserAdmin REST API
Key: AMDATUAUTH-121
URL: http://jira.amdatu.org/jira/browse/AMDATUAUTH-121
Project: Amdatu Auth
Issue Type: Question
Components: User Admin
Reporter: Ivo Ladage - van Doorn
Assignee: Ivo Ladage - van Doorn
The current UserAdmin REST API validates if the user is authenticated and if
the user has the 'Administrator' role. if this is not the case, a 401 is
returned in all cases. This also implies that users cannot update their own
properties. So even without starting discussion about a auth framework, we
should provide a quick way to resolve this issue.
Maybe it would be enough to allow users to update their own properties and
credentials?
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
http://jira.amdatu.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
Amdatu-developers mailing list
[email protected]
http://lists.amdatu.org/mailman/listinfo/amdatu-developers
