Actions
User story #5798
closedDifferent access levels for API keys / REST API authorizations and rights
Pull Request:
UX impact:
Suggestion strength:
User visibility:
Effort required:
Name check:
Fix check:
Regression:
Description
It would be very very helpful to assign permissions to API keys.
- The most important piece would being able to create ones that only have readonly access.
- use normal user levels
- allow accepting nodes only
- allow access depending on origin of the caller (localhost, trusted networks, ...)
One very heartwarming bonus would be to be allowed to skip validation / change requests for API based accesses (by token)
Audit log doesn't need to be skippable ;)
Updated by François ARMAND about 10 years ago
- Assignee set to François ARMAND
- Target version set to 3.0.0~beta1
Well, yes, of course.
The read only is a must have - no excuse for that.
The rights and change request things are nice, I will look about how to do that (in particular the one for validation skiping, it makes a lot of sense).
Updated by Jonathan CLARKE about 10 years ago
- Target version changed from 3.0.0~beta1 to 3.1.0~beta1
Updated by Vincent MEMBRÉ over 9 years ago
- Target version changed from 3.1.0~beta1 to 3.1.0~rc1
Updated by Vincent MEMBRÉ over 9 years ago
- Target version changed from 3.1.0~rc1 to 3.1.0
Updated by Vincent MEMBRÉ over 9 years ago
- Target version changed from 3.1.0 to 3.1.1
Updated by Vincent MEMBRÉ over 9 years ago
- Target version changed from 3.1.1 to 3.1.2
Updated by Jonathan CLARKE over 9 years ago
- Target version changed from 3.1.2 to 3.2.0~beta1
Updated by Vincent MEMBRÉ about 9 years ago
- Target version changed from 3.2.0~beta1 to 3.2.0~rc1
Updated by Benoît PECCATTE about 9 years ago
- Target version changed from 3.2.0~rc1 to 3.2.0~rc2
Updated by Benoît PECCATTE almost 9 years ago
- Target version changed from 3.2.0~rc2 to 3.2.0
Updated by Vincent MEMBRÉ almost 9 years ago
- Target version changed from 3.2.0 to 3.2.1
Updated by Vincent MEMBRÉ almost 9 years ago
- Target version changed from 3.2.1 to 3.2.2
Updated by Alexis Mousset almost 9 years ago
- Target version changed from 3.2.2 to 4.0.0~rc2
Updated by Janos Mattyasovszky over 8 years ago
- Related to User story #8183: Add a more detailed status API with component status added
Updated by François ARMAND over 8 years ago
- Related to User story #5627: Readonly API or otherwise restrictable API Accounts added
Updated by François ARMAND about 8 years ago
- Target version changed from 4.0.0~rc2 to 4.1.0~beta1
Updated by Vincent MEMBRÉ almost 8 years ago
- Target version changed from 4.1.0~beta1 to 4.1.0~beta2
Updated by Vincent MEMBRÉ almost 8 years ago
- Target version changed from 4.1.0~beta2 to 4.1.0~beta3
Updated by Vincent MEMBRÉ almost 8 years ago
- Target version changed from 4.1.0~beta3 to 4.1.0~rc1
Updated by François ARMAND almost 8 years ago
- Target version changed from 4.1.0~rc1 to 4.2.0~beta1
Updated by François ARMAND over 7 years ago
- Subject changed from Different access levels for API keys to Different access levels for API keys / REST API authorizations and rights
Updated by François ARMAND over 7 years ago
- Related to User story #10678: REST Api authorization management by roles added
Updated by Alexis Mousset over 7 years ago
- Target version changed from 4.2.0~beta1 to 4.2.0~beta2
Updated by Vincent MEMBRÉ over 7 years ago
- Target version changed from 4.2.0~beta2 to 4.2.0~beta3
Updated by Vincent MEMBRÉ over 7 years ago
- Target version changed from 4.2.0~beta3 to 4.2.0~rc1
Updated by Vincent MEMBRÉ over 7 years ago
- Target version changed from 4.2.0~rc1 to 4.2.0~rc2
Updated by Vincent MEMBRÉ over 7 years ago
- Target version changed from 4.2.0~rc2 to 4.2.0
Updated by Vincent MEMBRÉ about 7 years ago
- Target version changed from 4.2.0 to 4.2.1
Updated by Vincent MEMBRÉ about 7 years ago
- Target version changed from 4.2.1 to 4.2.2
Updated by Vincent MEMBRÉ about 7 years ago
- Target version changed from 4.2.2 to 4.2.3
Updated by Vincent MEMBRÉ about 7 years ago
- Target version changed from 4.2.3 to 4.2.4
Updated by François ARMAND almost 7 years ago
- Status changed from New to Rejected
- Assignee deleted (
François ARMAND) - Target version changed from 4.2.4 to 4.3.0~rc1
Now that #5627 is implemented, we can tell that that one is actually a duplicate :)
Updated by François ARMAND almost 7 years ago
- Related to deleted (User story #5627: Readonly API or otherwise restrictable API Accounts)
Updated by François ARMAND almost 7 years ago
- Is duplicate of User story #5627: Readonly API or otherwise restrictable API Accounts added
Actions