|
15 | 15 | * limitations under the License. |
16 | 16 | **/ |
17 | 17 |
|
| 18 | +use App\Models\Foundation\Main\IGroup; |
18 | 19 | use App\ModelSerializers\SerializerUtils; |
| 20 | +use App\Security\SummitScopes; |
19 | 21 | use models\main\ITagRepository; |
20 | 22 | use models\oauth2\IResourceServerContext; |
21 | 23 | use Illuminate\Support\Facades\Validator; |
@@ -64,8 +66,12 @@ public function __construct |
64 | 66 | operationId: "getAllTags", |
65 | 67 | summary: "Get all tags", |
66 | 68 | description: "Returns a paginated list of tags. Allows ordering, filtering and pagination.", |
67 | | - security: [["oauth2_security_scope" => ["openid", "profile", "email"]]], |
68 | 69 | tags: ["Tags"], |
| 70 | + security: [['tags_oauth2' => [ |
| 71 | + SummitScopes::ReadAllSummitData, |
| 72 | + SummitScopes::ReadSummitData, |
| 73 | + SummitScopes::ReadTagsData, |
| 74 | + ]]], |
69 | 75 | parameters: [ |
70 | 76 | new OA\Parameter( |
71 | 77 | name: 'page', |
@@ -146,6 +152,11 @@ function () { |
146 | 152 | summary: "Get a specific tag", |
147 | 153 | description: "Returns detailed information about a specific tag", |
148 | 154 | tags: ["Tags"], |
| 155 | + security: [['tags_oauth2' => [ |
| 156 | + SummitScopes::ReadAllSummitData, |
| 157 | + SummitScopes::ReadSummitData, |
| 158 | + SummitScopes::ReadTagsData, |
| 159 | + ]]], |
149 | 160 | parameters: [ |
150 | 161 | new OA\Parameter( |
151 | 162 | name: "id", |
@@ -206,8 +217,18 @@ public function getTag($tag_id){ |
206 | 217 | operationId: "createTag", |
207 | 218 | summary: "Create a new tag", |
208 | 219 | description: "Creates a new tag", |
209 | | - security: [["oauth2_security_scope" => ["openid", "profile", "email"]]], |
210 | 220 | tags: ["Tags"], |
| 221 | + x: [ |
| 222 | + 'authz_groups' => [ |
| 223 | + IGroup::SuperAdmins, |
| 224 | + IGroup::Administrators, |
| 225 | + IGroup::SummitAdministrators, |
| 226 | + ] |
| 227 | + ], |
| 228 | + security: [['tags_oauth2' => [ |
| 229 | + SummitScopes::WriteSummitData, |
| 230 | + SummitScopes::WriteTagsData, |
| 231 | + ]]], |
211 | 232 | requestBody: new OA\RequestBody( |
212 | 233 | required: true, |
213 | 234 | content: new OA\JsonContent(ref: "#/components/schemas/TagRequest") |
@@ -259,8 +280,18 @@ public function addTag(){ |
259 | 280 | operationId: "updateTag", |
260 | 281 | summary: "Update a tag", |
261 | 282 | description: "Updates an existing tag", |
262 | | - security: [["oauth2_security_scope" => ["openid", "profile", "email"]]], |
263 | 283 | tags: ["Tags"], |
| 284 | + x: [ |
| 285 | + 'authz_groups' => [ |
| 286 | + IGroup::SuperAdmins, |
| 287 | + IGroup::Administrators, |
| 288 | + IGroup::SummitAdministrators, |
| 289 | + ] |
| 290 | + ], |
| 291 | + security: [['tags_oauth2' => [ |
| 292 | + SummitScopes::WriteSummitData, |
| 293 | + SummitScopes::WriteTagsData, |
| 294 | + ]]], |
264 | 295 | parameters: [ |
265 | 296 | new OA\Parameter( |
266 | 297 | name: "id", |
@@ -324,8 +355,18 @@ public function updateTag($tag_id){ |
324 | 355 | operationId: "deleteTag", |
325 | 356 | summary: "Delete a tag", |
326 | 357 | description: "Deletes a tag", |
327 | | - security: [["oauth2_security_scope" => ["openid", "profile", "email"]]], |
328 | 358 | tags: ["Tags"], |
| 359 | + x: [ |
| 360 | + 'authz_groups' => [ |
| 361 | + IGroup::SuperAdmins, |
| 362 | + IGroup::Administrators, |
| 363 | + IGroup::SummitAdministrators, |
| 364 | + ] |
| 365 | + ], |
| 366 | + security: [['tags_oauth2' => [ |
| 367 | + SummitScopes::WriteSummitData, |
| 368 | + SummitScopes::WriteTagsData, |
| 369 | + ]]], |
329 | 370 | parameters: [ |
330 | 371 | new OA\Parameter( |
331 | 372 | name: "id", |
|
0 commit comments