Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Permissions are not considered on resources contained within the requested resource #305

Closed
bencap opened this issue Sep 20, 2024 · 0 comments · Fixed by #306 or #334
Closed

Permissions are not considered on resources contained within the requested resource #305

bencap opened this issue Sep 20, 2024 · 0 comments · Fixed by #306 or #334
Assignees
@bencap
Labels
app: backend Task implementation touches the backend sprint: added mid-sprint Task was added mid-sprint type: bug Something isn't working

Comments

@bencap
Copy link
Collaborator

bencap commented Sep 20, 2024

For instance, if a user requests an experiment set to which they have access the API only considers permissions on the experiment set, not for contained experiments within it. This is true of experiment -> score set relationship as well (although it is less of an issue, since generally speaking the same users who have view access on experiments will have it on contained score sets).
@bencap bencap added sprint: added mid-sprint Task was added mid-sprint type: bug Something isn't working labels Sep 20, 2024
@bencap bencap self-assigned this Sep 20, 2024
@bencap bencap linked a pull request Sep 20, 2024 that will close this issue
Permissions for Sub-Resources #306
Merged
@bencap bencap added the app: backend Task implementation touches the backend label Oct 1, 2024
@bencap bencap mentioned this issue Oct 11, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@bencap bencap

Labels
app: backend Task implementation touches the backend sprint: added mid-sprint Task was added mid-sprint type: bug Something isn't working
Projects
None yet
Milestone
No milestone
1 participant
@bencap