Update ws/stats API call for ALA Dashboard

AtlasOfLivingAustralia / volunteer-portal

DigiVol (Biodiversity Volunteer Portal)

https://volunteer.ala.org.au

17 stars 15 forks source link

Update ws/stats API call for ALA Dashboard #462

Closed alexhuang091 closed 3 years ago

alexhuang091 commented 3 years ago

current dashboard calls https://volunteer.ala.org.au/ws/stats.json (latest version deployed on Nov 2020),

but this change https://github.com/AtlasOfLivingAustralia/volunteer-portal/commit/bd668093719d85967f361fdd08aa1c7132c1c4c8 breaks the api

So now calling the api I saw a Must be logged in as an administrator to use this service!

cdausmus commented 3 years ago

@alexhuang091 We implemented authz on all administrative functions and information that accessed private and administrative information. Happy to update this for ALA Dashboard.

cdausmus commented 3 years ago

Excerpt from email from @sbearcsiro

DigiVol should only send the following fields: specimens, fieldNotes, volunteerCount, activeExpeditionsCount, completedExpeditionsCount and expeditionCount and remove the authz requirement that the user is an admin.

This means that digivol is sending cameratraps, topTenVolunteers and deactivatedExpeditionsCount which are not used by the dashboard.

Will remove authz
Will remove topTenVolunteers
Will remove deactivatedExpeditionsCount

sbearcsiro commented 3 years ago

Reviewed: LGTM