refactor(authz): use a struct for user access control info operations (#1682)

fix(authz): fix isAdmin not using groups to determine if a user is admin. fix(authz): return 401 instead of 403 403 is correct as per HTTP spec However authz is not part of dist-spec and clients know only about 401 So this is a compromise. Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2026-06-17 12:58:02 +08:00 · 2023-09-01 21:13:53 +03:00
parent b80deb9927
commit c6b822f3dd
28 changed files with 1052 additions and 889 deletions
@@ -526,6 +526,12 @@ const docTemplate = `{
                            }
                        }
                    },
+                    "401": {
+                        "description": "unauthorized",
+                        "schema": {
+                            "type": "string"
+                        }
+                    },
                    "404": {
                        "description": "not found",
                        "schema": {