feat(auth): implement and verify authorization for all endpoints #54

New issue

Closed

opened 2025-08-11 13:35:59 +00:00 by chartgerink · 0 comments

chartgerink commented 2025-08-11 13:35:59 +00:00

Owner

Copy link

The implementation is mostly focused on authentication at this time - authentication only verifies being logged in.

Authorization will ensure the logged in user has the relevant permissions. There are multiple forms of authorization we need to implement:

1. Role based authorization
2. User based authorization

Role based means for example that an admin has more rights on the service (for example, to delete institutions) than a regular client. Depends on #26.

User based authorization is to ensure that Person A cannot modify Person B's data. It can also mean that we verify that Person A has access to the requested content (eg a publication draft).

The implementation is mostly focused on authentication at this time - **authentication** only verifies being logged in. **Authorization** will ensure the logged in user has the relevant permissions. There are multiple forms of authorization we need to implement: 1. Role based authorization 2. User based authorization Role based means for example that an admin has more rights on the service (for example, to delete institutions) than a regular client. Depends on #26. User based authorization is to ensure that Person A cannot modify Person B's data. It can also mean that we verify that Person A has access to the requested content (eg a publication draft).

chartgerink referenced this issue 2025-08-11 13:36:57 +00:00

feat(auth): add authorization roles #26

chartgerink referenced this issue from a pull request that will close it, 2025-08-21 11:45:51 +00:00

feat(auth): implement and verify authorization for all endpoints #71

chartgerink closed this issue 2025-08-21 12:26:01 +00:00

chartgerink referenced this issue from a commit 2025-08-21 12:26:02 +00:00

feat(auth): implement and verify authorization for all endpoints (#71)

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

No results found.

Labels

Clear labels   

bug

Something is not working

  

critical

issues that are blocking other work, high importance + urgent

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

  

future

Not on the docket right now. Keeping the issue for future work.

  

help wanted

Need some help

  

invalid

Something is wrong

  

question

More information is needed

  

wontfix

This won't be fixed

No labels

bug

critical

duplicate

enhancement

future

help wanted

invalid

question

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: libscie/researchequals-api#54

No description provided.