b.santos/cloud-cap-samples
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(reviews): authorization restrictions (#382)

Browse Source
This commit is contained in:
Dr. David A. Kunz
2022-07-18 14:02:43 +02:00
committed by GitHub
parent 57cda61b02
commit 9a98ffd298
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
reviews/srv/reviews-service.cds
View File

@@ -26,10 +26,10 @@ service ReviewsService {
// Access control restrictions
annotate ReviewsService.Reviews with @restrict:[
{ grant:'GET', to:'any' }, // everybody can read reviews
{ grant:'READ', to:'any' }, // everybody can read reviews
{ grant:'CREATE', to:'authenticated-user' }, // users must login to add reviews
{ grant:'UPDATE', to:'authenticated-user', where:'reviewer=$user' },
{ grant:'DELET', to:'admin' },
{ grant:'DELETE', to:'admin' },
];
annotate ReviewsService with @restrict:[