Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

REST routes respect project membership delegation

Download Browse

This is part of story #10773: have a restricted project administrator role Given a static ugroup with membership management, When a user is member of this group, Then they can GET|PUT /user_groups/{:project_id}_3/users (like project admins) And they cannot call the same routes for other ugroups in this project. Change-Id: Ib33a4761139996e025738b9bbc6f49843aadfa6c

+53 −13
Nicolas Terray (nterray) 2018-01-09 16:33
Nicolas Terray (nterray) 2018-01-10 09:11
0224846928e3a3c961beecb0f68ba0a8a4a466a3
7cb5d7787d4178815172568d5b09a092a4f81568
git #tuleap/stable/0224846928e3a3c961beecb0f68ba0a8a4a466a3

Modified Files

Side by side diff
Inline diff
Name
M src/common/REST/ProjectAuthorization.class.php +16 −2 Go to diff View file
M src/common/include/URLVerification.class.php +25 −1 Go to diff View file
M src/common/project/REST/v1/UserGroupResource.class.php +12 −10 Go to diff View file