Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ls command(s) not scoped to user permissions #203

Open
claybarrett opened this issue May 3, 2021 · 1 comment
Open

ls command(s) not scoped to user permissions #203

claybarrett opened this issue May 3, 2021 · 1 comment

Comments

@claybarrett
Copy link

When I use the command panoptes subject-set ls I see what appears to be every subject set in the system, not just those within my project. Is this intended?

The command panoptes workflow ls behaves similarly.

I suspect the command panoptes subject ls doing the same thing, but I'm not patient enough to wait for it to query them all, and aborted it.

I also can list the workflows in other projects. I'm not saying this information should be private, it just seems unusual to have this much access to other project information. It may not be that I could do anything more than LS, I'm not brave enough to try activate/deactivate/delete on someone else's stuff.
@adammcmaster
Copy link
Contributor

That is how the API is intended to work, though admittedly it's not all that useful from the point of view of the CLI. All users (including anonymous users) can list all public resources. The zooniverse.org website uses the same API, so this is how it's required to work for users to browse projects, etc.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@adammcmaster @claybarrett