Details

    • Type: Sub-Task
    • Status: Closed
    • Priority: Minor
    • Resolution: Completed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None

      Description

      Currently there are these general purpose SAPs:

      • OAUTH2_everything ... grants access to every JSONWS service method
        • Method signature (everything): *
      • OAUTH2_everything.read ... grants "read" access to JSONWS services, when method name starts with fetch, get, has, is or search prefix
        • #fetch*
        • #get*
        • #has*
        • #is*
        • #search*
      • OAUTH2_everything.write ... grants "read" access to JSONWS services, whem method name starts with add, create, update or delete prefix
        • #add*
        • #create*
        • #update*
        • #delete*

       

      Beside that there are 2 unique SAP

      • OAUTH2_everything.read.documents.download ... to download content using /documents portal servlet, methods signatures:
        • com.liferay.document.library.kernel.service.DLAppService#get*
        • com.liferay.portal.kernel.service.ImageService#get*
      • OAUTH2_everything.read.userprofile ... to get authenticated user profile, method signature:
        • com.liferay.portal.kernel.service.UserService#getCurrentUser

       

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              id30721 id30721
              Reporter:
              tomas.polesovsky Tomáš Polešovský
              Participants of an Issue:
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Packages

                  Version Package