From c55f0e5e89c0e0278d8b620120d25ec703a73022 Mon Sep 17 00:00:00 2001 From: Berkeley Martinez Date: Thu, 28 Dec 2017 20:39:08 -0800 Subject: [PATCH] fix(User): Deny old auth api --- common/models/user.json | 46 ++++++++++++++++++++++++++++------------- 1 file changed, 32 insertions(+), 14 deletions(-) diff --git a/common/models/user.json b/common/models/user.json index 5cf6405769..3df32e595b 100644 --- a/common/models/user.json +++ b/common/models/user.json @@ -297,6 +297,38 @@ "principalId": "$everyone", "permission": "DENY" }, + { + "principalType": "ROLE", + "principalId": "$everyone", + "permission": "DENY", + "property": "create" + }, + { + "principalType": "ROLE", + "principalId": "$everyone", + "permission": "DENY", + "property": "login" + }, + { + "accessType": "EXECUTE", + "permission": "DENY", + "principalId": "$everyone", + "principalType": "ROLE", + "property": "verify" + }, + { + "permission": "DENY", + "principalId": "$everyone", + "principalType": "ROLE", + "property": "confirm" + }, + { + "accessType": "EXECUTE", + "permission": "DENY", + "principalId": "$everyone", + "principalType": "ROLE", + "property": "resetPassword" + }, { "accessType": "EXECUTE", "principalType": "ROLE", @@ -318,13 +350,6 @@ "permission": "ALLOW", "property": "giveBrowniePoints" }, - { - "accessType": "EXECUTE", - "principalType": "ROLE", - "principalId": "$owner", - "permission": "ALLOW", - "property": "requestUpdateEmail" - }, { "accessType": "EXECUTE", "principalType": "ROLE", @@ -338,13 +363,6 @@ "principalId": "$owner", "permission": "ALLOW", "property": "updateLanguage" - }, - { - "accessType": "EXECUTE", - "principalType": "ROLE", - "principalId": "$everyone", - "permission": "ALLOW", - "property": "requestAuthEmail" } ], "methods": {}