diff options
author | Ade Lee <alee@redhat.com> | 2013-10-08 17:02:50 -0400 |
---|---|---|
committer | Ade Lee <alee@redhat.com> | 2013-10-09 23:10:10 -0400 |
commit | dfbc59ad7c6b8285b42b249328db3211e00b6a5f (patch) | |
tree | ca843f96b9eaa63995a112c31347857aa5b0cd84 /base/common/src/com/netscape/certsrv/profile | |
parent | deb3dfb3dd2eb47f73efe74fcbc487f5f3796945 (diff) | |
download | pki-dfbc59ad7c6b8285b42b249328db3211e00b6a5f.tar.gz pki-dfbc59ad7c6b8285b42b249328db3211e00b6a5f.tar.xz pki-dfbc59ad7c6b8285b42b249328db3211e00b6a5f.zip |
fix auth and authz for Profiles REST API
Ticket 727
Diffstat (limited to 'base/common/src/com/netscape/certsrv/profile')
-rw-r--r-- | base/common/src/com/netscape/certsrv/profile/ProfileResource.java | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/base/common/src/com/netscape/certsrv/profile/ProfileResource.java b/base/common/src/com/netscape/certsrv/profile/ProfileResource.java index 5c733aa59..cc7b8153c 100644 --- a/base/common/src/com/netscape/certsrv/profile/ProfileResource.java +++ b/base/common/src/com/netscape/certsrv/profile/ProfileResource.java @@ -11,9 +11,11 @@ import javax.ws.rs.Produces; import javax.ws.rs.QueryParam; import javax.ws.rs.core.MediaType; +import com.netscape.certsrv.acls.ACLMapping; import com.netscape.certsrv.authentication.AuthMethodMapping; @Path("profiles") +@AuthMethodMapping("profiles") public interface ProfileResource { @GET @@ -26,27 +28,27 @@ public interface ProfileResource { public ProfileData retrieveProfile(@PathParam("id") String id); @POST - @AuthMethodMapping("admin") + @ACLMapping("profile.create") @Produces({ MediaType.APPLICATION_XML, MediaType.APPLICATION_JSON }) @Consumes({ MediaType.APPLICATION_XML, MediaType.APPLICATION_JSON }) public void createProfile(ProfileData data); @POST @Path("{id}") - @AuthMethodMapping("agent") + @ACLMapping("profile.approve") @Produces({ MediaType.APPLICATION_XML, MediaType.APPLICATION_JSON }) public void modifyProfileState(@PathParam("id") String id, @QueryParam("action") String action); @PUT @Path("{id}") - @AuthMethodMapping("admin") + @ACLMapping("profile.modify") @Produces({ MediaType.APPLICATION_XML, MediaType.APPLICATION_JSON }) @Consumes({ MediaType.APPLICATION_XML, MediaType.APPLICATION_JSON }) public void modifyProfile(@PathParam("id") String id, ProfileData data); @DELETE @Path("{id}") - @AuthMethodMapping("admin") + @ACLMapping("profile.delete") @Produces({ MediaType.APPLICATION_XML, MediaType.APPLICATION_JSON }) public void deleteProfile(@PathParam("id") String id); |