Project

General

Profile

Actions
Copy link

Task #3475

closed

Idea #3532: [Keep] Keepstore queries API server to verify tokens

Consult API server for user's admin status and scopes.

Added by Tim Pierce over 9 years ago. Updated about 5 years ago.

Status:
Closed
Priority:
Normal
Assigned To:
-
Target version:
-

Description

To determine whether a user is authorized to delete blocks, Keep must ask the API server for their user record and for their api_client_authorization,

Method IsAdmin(api_token): return true if the api_token is associated with a user whose is_admin field is true.

Method HasUnlimitedScope(api_token): return true if the api_client_authorization record for this api_token includes the string "all" in its "scopes" field.

Actions
Copy link
 #1

Updated by Tim Pierce over 9 years ago

  • Status changed from New to In Progress
Actions
Copy link
 #2

Updated by Tim Pierce over 9 years ago

  • Description updated (diff)
  • Assigned To set to Tim Pierce
Actions
Copy link
 #3

Updated by Tom Clegg over 9 years ago

  • Assigned To deleted (Tim Pierce)
  • Start date changed from 07/25/2014 to 08/08/2014
  • Parent task changed from #2769 to #3532
Actions
Copy link
 #4

Updated by Tom Clegg almost 6 years ago

  • Status changed from In Progress to Closed
  • Remaining (hours) set to 0.0
Actions
Copy link
 #5

Updated by Tom Morris about 5 years ago

  • Estimated time set to 0.00 h
Actions
Copy link

Also available in: Atom PDF