Skip to content

refactor: wire scope-based authz into v5 controllers, drop role-based filter#5812

Merged
paullatzelsperger merged 5 commits into
eclipse-edc:mainfrom
paullatzelsperger:feat/scope-controllers-step3
Jun 10, 2026
Merged

refactor: wire scope-based authz into v5 controllers, drop role-based filter#5812
paullatzelsperger merged 5 commits into
eclipse-edc:mainfrom
paullatzelsperger:feat/scope-controllers-step3

Conversation

@paullatzelsperger

Copy link
Copy Markdown
Member

What this PR changes/adds

wires the scope-based filtering into all controllers. instead of coarse scopes like management-api:read controllers now use fine-grained scopes like management-api:assets:read. However, coarse tokens management-api:read or management-api:*:read would both work.

Why it does that

Briefly state why the change was necessary.

Further notes

List other areas of code that have changed but are not necessarily linked to the main feature. This could be method
signature changes, package declarations, bugs that were encountered and were fixed inline, etc.

Who will sponsor this feature?

Please @-mention the committer that will sponsor your feature.

Linked Issue(s)

Closes #5802

Please be sure to take a look at the contributing guidelines and our etiquette for pull requests.

… filter

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@paullatzelsperger paullatzelsperger requested a review from a team as a code owner June 10, 2026 10:28
@paullatzelsperger paullatzelsperger added refactoring Cleaning up code and dependencies api Feature related to the (REST) api labels Jun 10, 2026
@paullatzelsperger paullatzelsperger merged commit 0f50ae8 into eclipse-edc:main Jun 10, 2026
34 of 35 checks passed
@paullatzelsperger paullatzelsperger deleted the feat/scope-controllers-step3 branch June 10, 2026 13:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

api Feature related to the (REST) api refactoring Cleaning up code and dependencies

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Scope-based authz — Step 3: Re-annotate controllers and remove the role-based gate

2 participants