From 62d2c40a87a02e166923f05b896edc998f723c89 Mon Sep 17 00:00:00 2001 From: Berkeley Martinez Date: Wed, 24 Jun 2015 08:23:49 -0700 Subject: [PATCH] Add read access to all models --- common/models/User-Identity.json | 9 ++++++++- common/models/bonfire.json | 2 +- common/models/challenge.json | 2 +- common/models/field-guide.json | 2 +- common/models/job.json | 2 +- common/models/nonprofit.json | 2 +- 6 files changed, 13 insertions(+), 6 deletions(-) diff --git a/common/models/User-Identity.json b/common/models/User-Identity.json index d63e5c0af3..79c2192f1c 100644 --- a/common/models/User-Identity.json +++ b/common/models/User-Identity.json @@ -11,6 +11,13 @@ "foreignKey": "userId" } }, - "acls": [], + "acls": [ + { + "accessType": "*", + "principalType": "ROLE", + "principalId": "$everyone", + "permission": "DENY" + } + ], "methods": [] } diff --git a/common/models/bonfire.json b/common/models/bonfire.json index ae5e5db32a..859f0196ed 100644 --- a/common/models/bonfire.json +++ b/common/models/bonfire.json @@ -36,7 +36,7 @@ { "accessType": "READ", "principalType": "ROLE", - "principalId": "$authenticated", + "principalId": "$everyone", "permission": "ALLOW" } ], diff --git a/common/models/challenge.json b/common/models/challenge.json index dfc8c9c4a9..f270e7f70b 100644 --- a/common/models/challenge.json +++ b/common/models/challenge.json @@ -72,7 +72,7 @@ { "accessType": "READ", "principalType": "ROLE", - "principalId": "$authenticated", + "principalId": "$everyone", "permission": "ALLOW" } ], diff --git a/common/models/field-guide.json b/common/models/field-guide.json index b8e734247c..be3ae99a25 100644 --- a/common/models/field-guide.json +++ b/common/models/field-guide.json @@ -29,7 +29,7 @@ { "accessType": "READ", "principalType": "ROLE", - "principalId": "$authenticated", + "principalId": "$everyone", "permission": "ALLOW" } ], diff --git a/common/models/job.json b/common/models/job.json index 30f981d4df..83d50ebc7b 100644 --- a/common/models/job.json +++ b/common/models/job.json @@ -32,7 +32,7 @@ { "accessType": "READ", "principalType": "ROLE", - "principalId": "$authenticated", + "principalId": "$everyone", "permission": "ALLOW" } ], diff --git a/common/models/nonprofit.json b/common/models/nonprofit.json index 2cfad23d66..ea2e834531 100644 --- a/common/models/nonprofit.json +++ b/common/models/nonprofit.json @@ -63,7 +63,7 @@ { "accessType": "READ", "principalType": "ROLE", - "principalId": "$authenticated", + "principalId": "$everyone", "permission": "ALLOW" } ],