Project

General

Profile

Actions

Bug #8079

closed

[API] Add uuid property to ApiClientAuthorization

Added by Tom Clegg almost 9 years ago. Updated over 8 years ago.

Status:
Resolved
Priority:
Normal
Assigned To:
Category:
API
Target version:
Story points:
0.5
Release:
Release relationship:
Auto

Description

This is more consistent with other objects, and makes it possible to specify an API token without revealing its secret content. For example, "arv edit {uuid}" can be used by an admin to change a token's scope.

Ensure it is not possible to retrieve an API token by looking up its UUID. Currently the filters behavior is altered such that ["uuid","=",api_token] looks up a token. This should change such that
  • list?filters=[["uuid","=",X]] and get?uuid=X return the auth record with UUID X only if token X's API token is the current API token
  • list?filters=[["api_token","=",T]] returns the auth record with the given api_token, but only if it belongs to the current user

Subtasks 2 (0 open2 closed)

Task #8366: Review branch: 8079-api-client-auth-uuidResolvedNico César02/12/2016Actions
Task #8661: Review 8079-lookup-token-uuidResolvedTom Clegg02/12/2016Actions

Related issues

Blocks Arvados - Feature #8128: [Crunch2] API support for crunch-dispatchResolvedTom Clegg04/28/2016Actions
Actions

Also available in: Atom PDF