notes/cisco_ft_securex_registration.org
This commit is contained in:
parent
8823319bf5
commit
3990d239db
1 changed files with 39 additions and 2 deletions
|
@ -161,9 +161,46 @@ following schema:
|
||||||
|
|
||||||
#+begin_src clojure
|
#+begin_src clojure
|
||||||
(defprotocol OrgAccessRequestService
|
(defprotocol OrgAccessRequestService
|
||||||
(create)
|
"See iroh-auth.registraion.org-access-request.schemas/ServiceFns for schemas."
|
||||||
)
|
:extend-via-metadata true
|
||||||
|
|
||||||
|
;; Service-to-Service API
|
||||||
|
(check-org-access-request-authorization!
|
||||||
|
[this user-id client-id org-access-request-id scopes]
|
||||||
|
"Throw an exception if the refresh token does not allow to
|
||||||
|
grant the scopes for this user and this client.
|
||||||
|
Should be used during the OAuth2 flows, this is not intended to be used via a Web API.")
|
||||||
|
|
||||||
|
(grant-org-access-request-authorization!
|
||||||
|
[this org-id user-id client-id org-access-request-id scopes]
|
||||||
|
"Save the user granted some refresh token in DB")
|
||||||
|
|
||||||
|
;; User filtered CRUD+Search for REST API related methods
|
||||||
|
(search-org-access-requests [this user-identity filter-map pagination-params]
|
||||||
|
"Search all refresh token for this user")
|
||||||
|
|
||||||
|
(get-org-access-request
|
||||||
|
[this user-identity org-access-request-id]
|
||||||
|
"Return the refresh token for a user using the org-access-request-id")
|
||||||
|
|
||||||
|
(patch-org-access-request
|
||||||
|
[this user-identity org-access-request-id org-access-request-patch]
|
||||||
|
"Change the list of scopes associated to a refresh token on the server-side
|
||||||
|
Could also be used to enable/disable a refresh token grant.")
|
||||||
|
|
||||||
|
;; Internal CRUD+Search
|
||||||
|
(raw-search-org-access-requests
|
||||||
|
[this filter-map pagination-params]
|
||||||
|
"Search all refresh token grants")
|
||||||
|
|
||||||
|
(raw-get-org-access-request
|
||||||
|
[this org-access-request-id]
|
||||||
|
"Return the refresh token grant")
|
||||||
|
|
||||||
|
(raw-patch-org-access-request
|
||||||
|
[this org-access-request-id org-access-request-patch]
|
||||||
|
"Change the list of scopes associated to a refresh token on the server-side
|
||||||
|
Could also be used to enable/disable a refresh token grant."))
|
||||||
#+end_src
|
#+end_src
|
||||||
|
|
||||||
**** UserIdentity
|
**** UserIdentity
|
||||||
|
|
Loading…
Reference in a new issue