Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

All endpoints except /login and / should check for Authorization header #32

Open
gsf opened this issue Feb 16, 2015 · 1 comment
Open

All endpoints except /login and / should check for Authorization header #32

gsf opened this issue Feb 16, 2015 · 1 comment

Comments

@gsf
Copy link
Member

gsf commented Feb 16, 2015

User token will be passed in Authorization header for requests. Some endpoints, like /search, will return a response suited to the user's permission level for requests with a passing Authorization header, a 401 for a failing Authorization, and a publicly accessible response for requests without the header.
@gsf gsf mentioned this issue Apr 25, 2015
Closed
gsf added a commit that referenced this issue Apr 25, 2015
@gsf
Include token in first user. #32
817a602
gsf added a commit that referenced this issue Apr 25, 2015
@gsf
Check for token/user on search. #32
edb265a
@gsf
Copy link
Member Author

gsf commented Nov 10, 2015

We'll probably need to do this on the item-get, -set, and -delete routes as a requirement for #73.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@gsf