jumpinjackie
commented
10 years ago This should be done at the MapGuide Server level
Closed jumpinjackie closed 10 years ago
jumpinjackie
commented
10 years ago This should be done at the MapGuide Server level
REST API operations that use the feature service have barebones access control mechanisms currently applied. Currently the only access controls implemented are boolean flags in the resource header indicating whether inserts/updates/deletes are allowed. These flags are global and apply for all users interacting with that particular Feature Source.
We need a greater level of granularity. Something that allows for things like insert/update/delete for Administrators but read-only for any other user.