jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

domains: remove locked field

Browse Source 
we will do this as part of access control if needed later
This commit is contained in:
Girish Ramakrishnan
2020-02-13 21:12:49 -08:00
parent d1911be28c
commit 25d871860d
7 changed files with 24 additions and 69 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
src/server.js
View File

@@ -82,8 +82,6 @@ function initializeExpressSync() {
const authorizeAdmin = routes.accesscontrol.authorize(accesscontrol.ROLE_ADMIN);
const authorizeUser = routes.accesscontrol.authorize(accesscontrol.ROLE_USER);
const verifyDomainLock = routes.domains.verifyDomainLock;
// public routes
router.post('/api/v1/cloudron/setup', routes.provision.providerTokenAuth, routes.provision.setup); // only available until no-domain
router.post('/api/v1/cloudron/restore', routes.provision.restore); // only available until activated
@@ -272,9 +270,9 @@ function initializeExpressSync() {
// domain routes
router.post('/api/v1/domains', token, authorizeAdmin, routes.domains.add);
router.get ('/api/v1/domains', token, authorizeUser, routes.domains.getAll);
router.get ('/api/v1/domains/:domain', token, authorizeAdmin, verifyDomainLock, routes.domains.get); // this is manage scope because it returns non-restricted fields
router.put ('/api/v1/domains/:domain', token, authorizeAdmin, verifyDomainLock, routes.domains.update);
router.del ('/api/v1/domains/:domain', token, authorizeAdmin, verifyDomainLock, routes.domains.del);
router.get ('/api/v1/domains/:domain', token, authorizeAdmin, routes.domains.get); // this is manage scope because it returns non-restricted fields
router.put ('/api/v1/domains/:domain', token, authorizeAdmin, routes.domains.update);
router.del ('/api/v1/domains/:domain', token, authorizeAdmin, routes.domains.del);
router.get ('/api/v1/domains/:domain/dns_check', token, authorizeAdmin, routes.domains.checkDnsRecords);
// addon routes