Roles and scopes
- Bavo Van Eyken
- Naomi Oste
- Jürgen Dooms (Unlicensed)
- oliver.may
Authorization policies for the API endpoints are based on (OAuth) scopes. A scope is an equivalent to a permission. The following scopes are available:
Scope name | Permissions | Role | Role | Role | Role GipodAannemer | Role |
|---|---|---|---|---|---|---|
gipod_pdo_write | Manage public domain occupancies (groundworks, works, events, parking bans) | YES | NO | NO |
| NO |
gipod_pdo_read | Read-only access to public domain occupancies (groundworks, works, events, parking bans) | YES | YES | NO |
| NO |
gipod_sp_write | Write signaling permits |
|
|
| YES |
|
gipod_sp_read | Read signaling permits and related information |
|
|
| YES |
|
gipod_ts_write | Manage trench synergy requests & synergies | YES | NO | NO |
| NO |
gipod_ts_read | Read-only access trench synergy requests & synergies | YES | YES | NO |
| NO |
gipod_org_write | Manage organisations within the structure of your organisation | NO | NO | YES |
| NO |
gipod_org_read | Read-only access to organisations | YES | YES | YES |
| NO |
gipod_org_settings | Manage organisations & application settings on organisation level | NO | NO | YES |
| NO |
gipod_mh_write | Manage mobility hindrance | YES | NO | NO |
| NO |
gipod_mh_read | Read-only access to mobility hindrance | YES | YES | NO |
| NO |
gipod_notifications | Read notifications and update status of a notifications | YES | NO | NO |
| NO |
gipod_impact_ov | Judge impact of public domain occupancies on public transport | NO | NO | NO |
| YES |
*The following scopes will be added to this role: gipod_pdo_read, gipod_ts_read, gipod_mh_read, gipod_org_read.
A role is assigned to a user. A role specifies which scopes the user will get.
An overview of the roles aimed at GUI-users can be found here (in Dutch): https://vlaamseoverheid.atlassian.net/l/c/3Uwam5M1
Role | Description | Allowed scopes |
|---|---|---|
GipodBijdrager |
| gipod_pdo_write gipod_pdo_read gipod_ts_write gipod_ts_read gipod_mh_read gipod_mh_write gipod_org_read gipod_notifications |
GipodRaadpleger |
| gipod_pdo_read gipod_ts_read gipod_mh_read gipod_org_read |
GipodApplicatieBeheerder |
| gipod_org_read gipod_org_write gipod_org_settings |
GipodAannemer |
| gipod_sp_create gipod_sp_write gipod_sp_read (gipod_org_read)
|
DeLijn (only for users from De Lijn) TODO: rename Role to include GIPOD (IDM) |
| gipod_impact_ov TOBE: gipod_pdo_read gipod_ts_read gipod_mh_read gipod_org_read |