Prevent user authorisations to be updated externally through the API

kalisio / kano

Map and weather forecast data explorer in 2D/3D

https://kalisio.github.io/kano/

MIT License

24 stars 7 forks source link

Closed claustres closed 2 years ago

claustres commented 2 years ago

User authorisations should only be updated using the dedicated internal authorisations service.

Adding the following hooks on user patch should do the work:

patch: [
  iff(isProvider('external'), preventChanges(true, 'catalog')),
  iff(isProvider('external'), preventChanges(true, 'layers'))
]