You are not logged in.

Announcement

[2017.09.08] DeployStudio build v1.7.8 (checksum, release note).
[2016.08.26] DeployStudio build v1.6.19 (release note).
[2013.02.23] DeployStudio last universal build v1.5.17 (release note).

#1 2013-09-03 01:16:17

cygnus2112
Member
From: Montreal
Registered: 2010-12-08
Website

Support for different rights for admin user

I'd like to use the DeployStudio REST API as a user with read-only access. In other words, a group member like that specified in the 'adminGroup' preference key, except have access only to GET methods.

An example case: I'd like to be able to wrap some GET requests in a script that runs on a client Mac to perform some configuration based on DeployStudio database information. If someone were able to hijack these credentials on the filesystem, they would then be able to write to my DeployStudio database. If the user had read-only access, they would not be able to do any damage, assuming I'm OK with someone being able to read information from my database.

Offline

Board footer

Powered by FluxBB