clarity on 'uid' usage + move examples to permission naming convention rule

zalando / restful-api-guidelines

A model set of guidelines for RESTful APIs and Events, created by Zalando

https://opensource.zalando.com/restful-api-guidelines/

Creative Commons Attribution 4.0 International

2.61k stars 384 forks source link

clarity on 'uid' usage + move examples to permission naming convention rule #801

Closed tfrauenstein closed 4 months ago

tfrauenstein commented 5 months ago

a) more clarity: scopes must be always defined. Use uid pseudo scope in case no API permissions are needed (green or yellow), or endpoint protection is done differently w/o permissions b) delete repetition of uid usage in the same rule below c) move scope examples to the rule below defining the scope naming convention

ePaul commented 5 months ago

:+1:

tfrauenstein commented 4 months ago

👍