Skip to content

Commit

Permalink
fix: add validateStoreUserAccess to APIs (#154)
Browse files Browse the repository at this point in the history
  • Loading branch information
@enzomerca
enzomerca authored Aug 14, 2024
1 parent ae0453b commit bd5a9d4
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 4 deletions.
3 changes: 3 additions & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,9 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.

## [Unreleased]

### Changed
- Changed the token validation directive of some operations

## [1.43.5] - 2024-08-08

### Fixed
Expand Down
8 changes: 4 additions & 4 deletions graphql/schema.graphql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ type Query {
@cacheControl(scope: PRIVATE, maxAge: SHORT)
@withSender

getUser(id: ID!): User @cacheControl(scope: PRIVATE) @checkUserAccess
getUser(id: ID!): User @cacheControl(scope: PRIVATE) @validateStoreUserAccess
getB2BUser(id: ID!): User @cacheControl(scope: PRIVATE)

checkCustomerSchema: Boolean @cacheControl(scope: PRIVATE) @withSender
Expand All @@ -43,7 +43,7 @@ type Query {
@deprecated(
reason: "This query is deprecated, use listUsersPaginated query instead."
)
@checkUserAccess
@validateStoreUserAccess

listUsersPaginated(
organizationId: ID
Expand All @@ -56,7 +56,7 @@ type Query {
sortedBy: String
): UserPagination
@cacheControl(scope: PRIVATE, maxAge: SHORT)
@checkUserAccess
@validateStoreUserAccess

checkImpersonation: UserImpersonation
@settings(settingsType: "workspace")
Expand All @@ -81,7 +81,7 @@ type Query {

getOrganizationsByEmail(email: String!): [Organization]
@cacheControl(scope: PRIVATE)
@checkUserAccess
@validateStoreUserAccess
}

type Mutation {
Expand Down

0 comments on commit bd5a9d4

Please sign in to comment.