Uploaded image for project: 'eZ Publish / Platform'
  1. eZ Publish / Platform
  2. EZP-23877

As a User I expect that REST API use permissions to view ContentType(Group)

    XMLWordPrintable

Details

    • Icon: Story Story
    • Resolution: Unresolved
    • Icon: High High
    • None
    • 5.4.0
    • Platform > REST API v2
    • None

    Description

      Description from EZP-23881:

      There are no policies used to restrict viewing/listing of Content Types and Content Types Groups.
      One should be added, and assigned by default (in demo data / clean dump) to the users who need it.
      We must pay attention not to break anything when content types are fetched in Controllers or other anonymous runtime code.

      Attachments

        Activity

          People

            Unassigned Unassigned
            bertrand.dunogier@ibexa.co Bertrand Dunogier
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated: