Closed nasajoey closed 5 years ago
USS-API Swagger spec says if a BASIC_USS attempts to PUT an Operation with PriorityStatusEnum.PUBLIC_SAFETY, that data exchange should return 403. We should probably emphasis that elsewhere in the USS Spec.
Today NUSS does not enforce this 403 -- it would be a business validation.
For government USS's running in TCL4, we define some USS identities in the BASIC security role and others in the PUBSAFE role.
To others up to speed on the NASA-internal discussions:
I might be forgetting a couple things. @issmith1 and @myspri can clarify if I misrepresented what we are going to do.
These are all going in the draft-dev branch and will be targeted for Sprint 4. No effect on Sprint 3.
Closing. Done. Reopen if I messed it up.
The API spec states that only public safety USS can write operations with PriorityElements status = PUBLIC_SAFETY.
We don't have an appropriate scope at the moment.