-
Notifications
You must be signed in to change notification settings - Fork 342
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
E6/S1: tag apiEndpoint with SCOPE #35
Comments
Should be part of #17. Need to verify |
Depends on RBACL #46 |
no longer dependent on #46 |
per discussion with @DrMegavolt - we will add scopes as a attribute to the endpoint without a tag action as originally specified by Roman, Scopes will need to require the ability to specify granularity to the HTTP VERB level |
in API endpoint - scopes can be defined as shown in example below: *.dog.com + /v1/api/cart + GET, assign scope STAFF apiEndpoints *.dog.com /v1/api/cart + GET, PUT, POST, DELETE, assign scope ADMIN |
Allow a user to specify the OAuth2 tag within a pipeline's path to match all endpoints URLs
Example:
condition: ["always"]
or by a particular path
condition: ["pathExact", "/protected/resourceA"]
this would trigger the policy.
The text was updated successfully, but these errors were encountered: