http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=13799 --- Comment #144 from Olli-Antti Kivilahti <olli-antti.kivilahti@jns.fi> --- Created attachment 42518 --> http://bugs.koha-community.org/bugzilla3/attachment.cgi?id=42518&action=edit Bug 13799 - Swagger2-driven Permission checking A hasty downgrade from 13920, utilizing new features implemented by the Mojolicious::Plugin::Swagger2-author, to make it possible to implement more complex authentication/authorization scenarios with the Plugin. Define 'x-koha-permission' for the Swagger2 Operation Object, to automatically authorize against the required permissions. This way we immediately tell the API consumer in the Swagger2-definition, which permissions are needed to access defined resources. Also we don't need to maintain permissions in multiple locations and we can build a smart testing framework to help a lot in creating tests for the new REST API. -- You are receiving this mail because: You are watching all bug changes.