GitHub user mikedunker-apigee opened a pull request:
https://github.com/apache/usergrid/pull/491
USERGRID-1266: check permissions at REST layer to avoid incorrect resâ¦
â¦ponse codes
also block user token exchange via GET
/org/app/users/{user}/token?access_token={usertoken}
and log guest user into app when no token sent in for
@CheckPermissionsForPath
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/mdunker/usergrid USERGRID-1266
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/usergrid/pull/491.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #491
----
commit 10e2be7b405e1031abf74082efa8dce2ca9cb1fc
Author: Mike Dunker <[email protected]>
Date: 2016-03-15T19:30:25Z
USERGRID-1266: check permissions at REST layer to avoid incorrect response
codes
also block user token exchange via GET
/org/app/users/{user}/token?access_token={usertoken}
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
