[Koha-bugs] [Bug 24067] Refactor REST API allow-owner authorization logic
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Tue Nov 19 15:36:37 CET 2019
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=24067
--- Comment #1 from Lari Taskula <lari.taskula at hypernova.fi> ---
Created attachment 95553
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=95553&action=edit
Bug 24067: Add new subroutine check_resource_ownership
This patch adds a new subroutine called check_resource_ownership.
The method is called when API consumer has no permission but the request may
still be authorized if the user is accessing only their own resources. In
this case, it will find a method called "owner_authorization" from the
controller
specified by the endpoint.
Testable in following patches.
Sponsored-by: Koha-Suomi Oy
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list