Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

(api) Implement scopes #318

Closed
wants to merge 9 commits into from
Closed

(api) Implement scopes #318

wants to merge 9 commits into from

Conversation

Leobouloc
Copy link
Contributor

@Leobouloc Leobouloc commented May 3, 2023
edited
Loading

STALE BRANCH, PR KEPT OPEN FOR REFERENCE

Purpose

Currently, the API has no restriction to the data / endpoints available. All authenticated users have unlimited read and write access, through all endpoints. The purpose, of this PR, (initiated by #288) is to add security mechanism including scopes and permissions. The xAPI specification suggests these scopes.

NB: The term "scope" is used losely, as the authentification mode (for now) is Basic Auth ("scope" is usually used in the context of OAuth). We use the term in a similar sense but applied to a user. (eg. "a user has the right to access scope /statements/read/mine").

Proposal

Adding scopes is relatively straightforward except for the scope /statements/read/mine, which requires to add a notion of belonging to the statements being stored. This notion is covered by the xAPI specification under the name "Authority", which is a field that SHOULD be created by the LRS upon receiving statements and populated with the requesting user account information. This authority field may then be used to filter incoming queries and/or results.

The proposed solution (a first pass) includes pre-processing the data to add "Authority", implementing scopes, and adding a permissions mechanism which forces user to query using an authority field, when the broadest scope available is /statements/read/mine.

The proposed pre-processing also handles annex LRS conformity issues, by adding to the statements the fields timestamp, stored and id (when not present).

Description...

  • Add statement pre-processing on POST and PUT for timestamp, stored, id
  • Test pre-processing for timestamp, stored, id for PUT
  • Test pre-processing for timestamp, stored, id for POST
  • Refactor endpoint tests to work with pre-processing (GET, POST, PUT)
  • Test new helper functions in utils
  • Add authority to databases and query statements
  • Decide whether or not to authorize same authority for different users
  • Test querying by authority
  • Add statement pre-processing on POST and PUT for authority (separate as it is a more complex issue)
  • Test pre-processing for authority for POST
  • Test pre-processing for authority for PUT
  • Add "scope" (see above) mechanism to auth, to restrict access to endpoints
  • Test "scope" mechanism (especially test permissions vulnerabilities)
  • Add permissions mechanism to get
  • Test permission mechanism
  • Update CHANGELOG

@Leobouloc Leobouloc added the WIP label May 3, 2023
@Leobouloc Leobouloc changed the title Implement scopes (api) Implement scopes May 9, 2023
@Leobouloc Leobouloc marked this pull request as draft May 9, 2023 08:46
@Leobouloc Leobouloc mentioned this pull request May 10, 2023
Closed
@quitterie-lcs quitterie-lcs added this to the 4.0 milestone Jun 20, 2023
@wilbrdt wilbrdt modified the milestones: 4.0, 5.0 Jul 11, 2023
@Leobouloc
Copy link
Contributor Author

Stale branch. See:
#441

@Leobouloc Leobouloc closed this Oct 4, 2023
@Leobouloc Leobouloc deleted the implement-scopes branch October 12, 2023 12:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@quitterie-lcs quitterie-lcs quitterie-lcs left review comments

Assignees

@Leobouloc Leobouloc

Labels
WIP
Projects
Ralph roadmap
Status: In Progress
Milestone
5.0
Development

Successfully merging this pull request may close these issues.
3 participants
@Leobouloc @quitterie-lcs @wilbrdt