Hi all, Currently we have the below descriptions for the scopes related to the API Controller operations in the Admin v1 REST API definition.
Scope Description REST APIs apim:app_import_export Import and export applications Admin v1 apim:api_import_export Import and export APIs Admin v1 apim:api_product_import_export Import and export API Products Admin v1 The above table should be updated as below with new descriptions after these scopes are added to the Publisher v1 and Store v1 as well. Scope Description REST APIs apim:app_import_export Import and export applications related operations Admin v1, Publisher v1, Store v1 apim:api_import_export Import and export APIs related operations Admin v1, Publisher v1, Store v1 apim:api_product_import_export Import and export API Products related operations Admin v1, Publisher v1, Store v1 WDYT? Thanks, Wasura On Tue, Jun 23, 2020 at 10:49 AM Wasura Wattearachchi <[email protected]> wrote: > Hi all, > > First of all, I must say that, in the first table of the first mail, I > have mistakenly added app_product_import_export (which is a wrong scope) > instead of app_import_export. Please find the corrected table below with > the changes (Changed columns are in blue). Sorry for the inconvenience > caused. > > Operation > > Current Required Scopes > > New Required Scopes (Common Scopes) > > add-env > > - > > - > > remove-env > > - > > - > > list env > > - > > - > > login > > - > > - > > logout > > - > > - > > list apis > > apim:api_view > > apim:api_import_export > > delete api > > apim:api_delete, > > apim:api_view > > apim:api_import_export > > change-status api > > apim:api_publish, > > apim:api_view > > apim:api_import_export > > import-api > > apim:api_import_export > > apim:api_import_export > > import-api with --update > > apim:api_import_export, > > apim:api_view > > apim:api_import_export > > export-api > > apim:api_import_export > > apim:api_import_export > > export-apis > > apim:api_import_export, > > apim:api_view > > apim:api_import_export > > list api-products > > apim:api_view > > apim:api_product_import_export > > delete api-product > > apim:api_publish, > > apim:api_view > > apim:api_product_import_export > > import api-product > > apim:api_product_import_export > > apim:api_product_import_export > > import api-product --import-apis > > apim:api_product_import_export, > > apim:api_import_export > > apim:api_product_import_export, > > apim:api_import_export > > import api-product --update-apis > > apim:api_product_import_export, > > apim:api_import_export > > apim:api_product_import_export, > > apim:api_import_export > > import api-product --update-api-product > > apim:api_product_import_export > > apim:api_product_import_export > > export api-product > > apim:api_product_import_export, > > apim:api_import_export > > apim:api_product_import_export, > > apim:api_import_export > > list apps > > apim:app_owner_change > > apim:app_import_export > > delete app > > apim:subscribe, > > apim:app_manage,, > > apim:app_owner_change > > apim:app_import_export > > import-app > > apim:app_import_export > > apim:app_import_export > > export-app > > apim:app_import_export > > apim:app_import_export > > get-keys > > apim:api_view, > > apim:subscribe > > apim:api_import_export, > > apim:api_product_import_export, > > apim:app_import_export > > On Mon, Jun 22, 2020 at 10:28 PM Malintha Amarasinghe <[email protected]> > wrote: > >> >> Do we need apim:app_import_export here? >> > > > The main reason for the three (3) common scopes apim:api_import_export, > apim:api_product_import_export > and apim:app_import_export is to distinguish the granularity level based > on APIs, API Products and Applications. But if this needs to change, we can > do it. > > Store v1 > > GET store/v1/applications > > apim:subscribe, > > apim:app_manage > > apim:subscribe, > > apim:app_manage, > > apim:api_import_export, > > apim:api_product_import_export, > > apim:app_import_export > > The above resource is used in “list apps” and “get-keys” operations. To > maintain the granularity level, I thought of adding apim:app_import_export > here in “list apps” operation. Also, since the “get-keys” operation is > related to APIs or API Products, I added apim:api_import_export and > apim:api_product_import_export here. > > >> >> Do we need apim:app_import_export here? >> > > Store v1 > > DELETE store/v1/applications/{applicationId} > > apim:subscribe, > > apim:app_manage > > apim:subscribe, > > apim:app_manage, > > apim:app_import_export > > The above resource is used in the “delete app” operation. As mentioned > previously, to maintain the granularity level, I thought of adding > apim:app_import_export here in this operation. > > Let me know your suggestions or whether I have misinterpreted your question > @Malintha > Amarasinghe <[email protected]>. > > Thank you! > -- > *Wasura Wattearachchi* | Software Engineer | WSO2 Inc. > (m) +94775396038 | (e) [email protected] | (b) Medium > <https://medium.com/@wasuradananjith> > [image: http://wso2.com/signature] <http://wso2.com/signature> > -- *Wasura Wattearachchi* | Software Engineer | WSO2 Inc. (m) +94775396038 | (e) [email protected] | (b) Medium <https://medium.com/@wasuradananjith> [image: http://wso2.com/signature] <http://wso2.com/signature>
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
