N°993: restrict the access to the REST/JSON web services to users having the profile "REST Services User" (restore 2018-04-10 revisions : r5632..r5633)

SVN:trunk[5630]
2026-04-24 02:58:43 +02:00 · 2018-04-12 08:53:02 +00:00
parent 42606873af
commit c562098ef7
4 changed files with 32 additions and 1 deletions
--- a/core/datamodel.core.xml
+++ b/core/datamodel.core.xml
@@ -1,3 +1,12 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <itop_design>
+  <user_rights>
+    <profiles>
+      <profile id="1024" _delta="define">
+        <name>REST Services User</name>
+        <description>Only users having this profile are allowed to use the REST Web Services (unless 'secure_rest_services' is set to false in the configuration file).</description>
+        <groups />
+      </profile>
+    </profiles>
+  </user_rights>
 </itop_design>