Skip to content

Commit

Permalink
MODAT-168: Rename auth permissions (#104)
Browse files Browse the repository at this point in the history 
Permission rename:

auth.signtoken -> auth.token.post or auth.token.sign.post

auth.signrefreshtoken -> auth.refreshtoken.post or auth.token.refresh.post

New permissions to bundle the single endpoint permissions:

auth.signtoken.all
auth.signrefreshtoken.all
auth.sign-and-refresh-token.all

To be merged together with folio-org/mod-authtoken#167
  • Loading branch information
@julianladisch
julianladisch authored Nov 3, 2024
1 parent 8ff402f commit d8a1074
Showing 1 changed file with 61 additions and 16 deletions.
77 changes: 61 additions & 16 deletions descriptors/ModuleDescriptor-template.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -144,33 +144,33 @@
},
{
"id": "authtoken",
"version": "2.0",
"version": "2.1",
"handlers": [
{
"methods": [ "POST" ],
"pathPattern": "/token",
"permissionsRequired": [ "auth.signtoken" ]
"permissionsRequired": [ "auth.token.post" ]
},
{
"methods": [ "POST" ],
"pathPattern": "/refreshtoken",
"permissionsRequired": [ "auth.signrefreshtoken" ]
"permissionsRequired": [ "auth.refreshtoken.post" ]
}
]
},
{
"id": "authtoken2",
"version": "1.0",
"version": "1.1",
"handlers": [
{
"methods": [ "POST" ],
"pathPattern": "/token/sign",
"permissionsRequired": [ "auth.signtoken" ]
"permissionsRequired": [ "auth.token.sign.post" ]
},
{
"methods": [ "POST" ],
"pathPattern": "/token/refresh",
"permissionsRequired": [ "auth.signrefreshtoken" ]
"permissionsRequired": [ "auth.token.refresh.post" ]
},
{
"methods": [ "POST" ],
Expand Down Expand Up @@ -257,16 +257,6 @@
"displayName" : "Credentials existence get",
"description" : "Get credentials existence"
},
{
"permissionName": "auth.signtoken",
"displayName": "auth-token - sign token",
"description": "sign token"
},
{
"permissionName": "auth.signrefreshtoken",
"displayName": "auth-token - sign refresh token",
"description": "sign refresh token"
},
{
"permissionName" : "login.all",
"displayName" : "login credentials",
Expand All @@ -285,6 +275,61 @@
"login.event.delete",
"login.credentials-existence.get"
]
},
{
"permissionName": "auth.token.post",
"displayName": "auth-token - sign token - legacy, deprecated",
"description": "sign token, legacy, deprecated"
},
{
"permissionName": "auth.refreshtoken.post",
"displayName": "auth-token - sign refresh token - legacy, deprecated",
"description": "sign refresh token, legacy, deprecated"
},
{
"permissionName": "auth.token.sign.post",
"displayName": "auth-token - sign expiring token",
"description": "sign expiring token"
},
{
"permissionName": "auth.token.refresh.post",
"displayName": "auth-token - use refresh token to sign a new expiring token",
"description": "sign expiring token using refresh token"
},
{
"permissionName": "auth.signtoken.all",
"displayName": "auth-token - sign token",
"description": "sign token",
"subPermissions" : [
"auth.token.post",
"auth.token.sign.post"
],
"replaces": [
"auth.signtoken"
]
},
{
"permissionName": "auth.signrefreshtoken.all",
"displayName": "auth-token - sign refresh token",
"description": "sign refresh token",
"subPermissions" : [
"auth.refreshtoken.post",
"auth.token.refresh.post"
],
"replaces": [
"auth.signrefreshtoken"
]
},
{
"permissionName": "auth.sign-and-refresh-token.all",
"displayName": "auth-token - sign and refresh token",
"description": "sign and refresh token",
"subPermissions" : [
"auth.token.post",
"auth.token.sign.post",
"auth.refreshtoken.post",
"auth.token.refresh.post"
]
}
],
"launchDescriptor": {
Expand Down

0 comments on commit d8a1074

Please sign in to comment.