5012d46cbd
Add rubocop to our build. ( #5004 )
2017-07-28 10:20:09 +09:00
f4f5524190
FEATURE: user API now contains scopes so permission is granular
...
previously we supported blanket read and write for user API, this
change amends it so we can define more limited scopes. A scope only
covers a few routes. You can not grant access to part of the site and
leave a large amount of the information hidden to API consumer.
2016-10-14 16:05:42 +11:00
2d859ba0ed
FIX: user api should always be available to staff
2016-09-12 15:42:06 +10:00
1d281e02c7
id is optional if already specified in header
2016-09-02 17:08:46 +10:00
be0fd5b4cc
FEATURE: allow user api key revocation for read only keys
2016-09-02 17:04:00 +10:00
ca79c4b276
stop eating up push_urls
2016-08-26 13:23:06 +10:00
fcdf13f52d
add some more testing
2016-08-26 13:18:20 +10:00
a37db9448f
correctly return access rights in auth redirect
2016-08-26 13:12:38 +10:00
a25a8115e8
FEATURE: support HEAD request to /user-api-key/new
...
This allows us to cleanly sniff to find if it exists
2016-08-17 09:58:19 +10:00
416e7e0d1e
FEATURE: basic UI to view user api keys
2016-08-16 17:06:52 +10:00
fc095acaaa
Feature: User API key support (server side implementation)
...
- Supports throttled read and write
- No support for push yet, but data is captured about intent
2016-08-15 17:59:36 +10:00
Guo Xiang Tan
Sam