[Kimchi-devel] [PATCH 4/5] Enhance UrlSubNode decorator and kimchiauth tool to check for sudo rights
Adam King
rak at linux.vnet.ibm.com
Thu Feb 13 19:14:15 UTC 2014
On 2/12/2014 3:07 PM, Leonardo Augusto Guimarães Garcia wrote:
> Hmmm... I've been thinking about this and I think that it is wrong to
> assume that GET method will not require admin access at all times. I
> think there might be some REST APIs for which no even GET should be
> permitted for non-admin user.
I agree. GET is likely to need to be protected too
--
Adam King <rak at linux.vnet.ibm.com>
IBM CSI
More information about the Kimchi-devel
mailing list