Update security section about uid scope

zalando / restful-api-guidelines

A model set of guidelines for RESTful APIs and Events, created by Zalando

https://opensource.zalando.com/restful-api-guidelines/

Creative Commons Attribution 4.0 International

2.61k stars 384 forks source link

Update security section about uid scope #794

Closed oporkka closed 6 months ago

oporkka commented 7 months ago

Add more visible note that uid scope is also a valid scope for publicly available data, as this is often misunderstood, even if there is text about this below in the same section.

tfrauenstein commented 6 months ago

Thank you for the PR -- I have some more change proposals and therefore created a new PR that anticipates this PR and the comments -- see https://github.com/zalando/restful-api-guidelines/pull/798 Please, let us close this PR and check the new PR -- thank you!

ePaul commented 6 months ago

:+1:

tkrop commented 6 months ago

👍

tfrauenstein commented 6 months ago

👍