Hi Marc, On Sa, 2015-06-27 at 21:11 +0200, Marc Haber wrote: (...) > > Currently, mini-buildd merely uses the django user management as-is, as > > it comes for free, using the existing user/staff/superuser flags to have > > some privilege handling for the API calls. Not a lot of extra code > > needed. > > But there are already fine grained privilieges for other API calls?
no. The API calls currently have user/staff/superuser thing. I have already added a patch (will be in 1.0.8) so one can actually see the "auth level" for each API call -- for both, 'mini-buildd-tool --help' and in the web interface. This should make things clearer. Hth! S -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
