Add the ability to locally ban/allow POST requests

apel / rest

Experimental REST API for APEL

Apache License 2.0

1 stars 7 forks source link

Closed gregcorbett closed 7 years ago

gregcorbett commented 7 years ago

POST endpoint will now AuthZ requests in the following order

if the DN has been explicitly banned (added to BANNED_FROM_POST), do not allow.
if the hostname in the DN is a listed provider, allow
if the DN has been explicitly set to be allowed (added to ALLOW_FOR_POST), then allow

Test cases have been added to check this behaviour.

Banning users has been documented in the service reference card.

gregcorbett commented 7 years ago

I think I've changed everything you brought up