api-components-bundle icon indicating copy to clipboard operation
api-components-bundle copied to clipboard
verified publisher icon components-web-app

Route security implementation [A discussion]

Open silverbackdan opened this issue 5 years ago • 0 comments

I have been battling with my own thoughts on the best way to implement this. Please take a look at how the bundle configuration can currently be used to determine route security and perhaps we can discuss the flexibility of this for applications.

The results need to be able to be the following:

  1. Collections only return routes for which the current user (or anonymous user) has access to.
  2. Route resource items which are not authorised must return 401/403 (not just a 404 not found).

Any input and discussion is greatly appreciated.

silverbackdan avatar Jun 04 '20 12:06 silverbackdan