search

mozilla-iam / cis

Home of Mozilla IAM change integration service repository.
Mozilla Public License 2.0
10 stars 27 forks source link

enable deleting profiles on prod #524

Open fiji-flo opened 3 years ago

fiji-flo commented 3 years ago

Tired of deleting profiles directly in Dynamo. Require write scope for all change API endpoints.

gcoxmoz commented 3 years ago

Quoth gene: "The challenge is that there's no scoping to grant a PersonAPI user rights to do read operations but not deletes. That capability would need to be added first as otherwise all PersonaAPI clients could delete any/all records"