Revision 61330
Added by Konstantinos Spyrou over 2 years ago
RepositoryController.java | ||
---|---|---|
124 | 124 |
@RequestMapping(value = "/getRepositoryInterface/{id}", method = RequestMethod.GET, |
125 | 125 |
produces = MediaType.APPLICATION_JSON_VALUE) |
126 | 126 |
@ResponseBody |
127 |
@PreAuthorize("hasRole('ROLE_ADMIN') or hasRole('ROLE_PROVIDE_ADMIN') or @aaiUserRoleService.isMemberOf(#id)")
|
|
127 |
@PostAuthorize("hasRole('ROLE_ADMIN') or hasRole('ROLE_PROVIDE_ADMIN') or @aaiUserRoleService.isMemberOf(#id) or (@repositoryService.getRepositoryById(#id).registeredBy=='null' and hasRole('ROLE_USER'))")
|
|
128 | 128 |
public List<RepositoryInterface> getRepositoryInterface(@PathVariable("id") String id) throws JSONException { |
129 | 129 |
return repositoryService.getRepositoryInterface(id); |
130 | 130 |
} |
Also available in: Unified diff
1. fixed authorization when requesting for repository interfaces