-
### Description
We need to figure out a simpler way to configure fine-grained authorization.
Currently, authorization is a combination of roles and permissions. Once set, it is often unclear to…
-
### Summary
This epic captures the work to improve the existing Gitpod Authorization and enable the capability to support fine grained authorization.
### Context
Historically, the authorizati…
-
First off: Kudos for making this open-source library!
After searching the docs, I don't know how to set permissions in a way, for example, if a have a colab notes space, that certain notes would ju…
-
**Summary**
The node API authorization is too coarse. We need finer grained authorization of different request types, and maybe resources acted on.
**Background**
The Kubelet API on the authent…
-
### Describe the bug
In the realm-management client, there is a tab named Authorization. It can manage all the fine-grained permissions of the realm. It has some differences from the Authorization ta…
-
### Enhancement Description
- One-line enhancement description (can be used as a release note): The node API authorization is too coarse. We need finer grained authorization of different request ty…
-
This is the initial write up for fine-grained authorization in the REST API endpoints
## Background
Currently, we support Basic Authorization as configured with a map in the `restapi` configurat…
-
- [x] integration with Calendar / Mail clients: yes / no / which ones?
- [x] how to notify parties? E-Mail? SMTP integration server side?
- [x] export capabilities? ics appointment files? Internet c…
-
Unlike RESTful API, we have scope for each endpoint so that the authorization can be down to the endpoint. For GraphQL, there is only one endpoint with only two or three different type of requests. Ne…
-
Current rules of MicroProfile-JWT is that when MP-JWT is enabled, all of the application requires a JWT for requests to be successful. It should be possible to allow specific parts (endpoints or path…