webnaplo-gulbaba-api/config/autoload/authx2.global.php

<?php

/**
 * Authorization, authentication config
 */

return [
    'acl_config' => [
        'unguarded_routes' => [
            'api.auth.login',
            'api.ping',
            'api.xlsx',
            'show-attachment',
            'hibajegy-pdf',
            'karbantartasjegy-pdf',
            'havi-riport-pdf',
        ],

        'route_guard' => [
            'roles' => [
                /**
                 * child role => parents[]
                 * parentrole has all child roles permissions
                 * order of roles DO matter, referenced parents MUST exist, so should be defined first
                 */
                // karbantartó oldal
                'uzemeltetesi_vezeto' => [
                    'ufo',
                ],
                'betekinto' => [
                    'uzemeltetesi_vezeto',
                ],
                // ügyfél oldal
                'karbantarto' => [
                    'projektvezeto'
                ],
                'user' => [
                    'betekinto',
                    'karbantarto',
                ],
            ],
            'permissions' => [
                // 'admin' role has full access
                'uzemeltetesi_vezeto' => [
                    'api.fault.post',
                    'api.fault.put',
                    'api.report.post',
                    'api.fault-attachment.post',
                    'api.fault-comment.post',
                    'api.fault-reject.post',
                    'api.maintenance',
                    'api.maintenance.upcoming',
                    'api.maintenance.calendar',
                ],
                'ufo' => [
                    'api.fault.put',
                    'api.fault-attachment.post',
                    'api.fault-comment.post',
                    'api.fault-reject.post',
                ],
//              'betekinto' => [
//                  'api.fault.get',
//              ],

                'projektvezeto' => [
                    'api.fault.put',
                    'api.report.post',
                    'api.fault-attachment.post',
                    'api.fault-comment.post',
                    'api.maintenance',
                    'api.maintenance.put',
                    'api.maintenance.upcoming',
                    'api.maintenance.calendar',
                ],
                'karbantarto' => [
                ],
                // anybody logged in has the 'user' meta role, its not assignable otherwise
                // api endpoints defined here are accessible to all authenticated users
                'user' => [
                    'api.auth.renew',
                    'api.user.list',
                    'api.user.profile',
                    'api.user.password',
//                    'api.settings.post',
                    'api.error-category.get',
                    'api.error-origin.get',
                    'api.facility-location.get',
                    'api.solution-time-interval.get',
                    'api.fault.get',
                    'show-attachment',
                ],
            ],
        ],
    ],
];
* initial commit 2018-11-11 12:01:18 +01:00			`<?php`

			`/**`
			`* Authorization, authentication config`
			`*/`

			`return [`
			`'acl_config' => [`
			`'unguarded_routes' => [`
			`'api.auth.login',`
			`'api.ping',`
			`'api.xlsx',`
			`'show-attachment',`
			`'hibajegy-pdf',`
			`'karbantartasjegy-pdf',`
			`'havi-riport-pdf',`
			`],`

			`'route_guard' => [`
			`'roles' => [`
			`/**`
			`* child role => parents[]`
			`* parentrole has all child roles permissions`
			`* order of roles DO matter, referenced parents MUST exist, so should be defined first`
			`*/`
			`// karbantartó oldal`
			`'uzemeltetesi_vezeto' => [`
			`'ufo',`
			`],`
			`'betekinto' => [`
			`'uzemeltetesi_vezeto',`
			`],`
			`// ügyfél oldal`
			`'karbantarto' => [`
			`'projektvezeto'`
			`],`
			`'user' => [`
			`'betekinto',`
			`'karbantarto',`
			`],`
			`],`
			`'permissions' => [`
			`// 'admin' role has full access`
			`'uzemeltetesi_vezeto' => [`
			`'api.fault.post',`
			`'api.fault.put',`
			`'api.report.post',`
			`'api.fault-attachment.post',`
			`'api.fault-comment.post',`
			`'api.fault-reject.post',`
			`'api.maintenance',`
* logger added * calendar view in maintenance * $year filter support in xlsx and maintenance 2018-11-19 16:48:12 +01:00			`'api.maintenance.upcoming',`
			`'api.maintenance.calendar',`
* initial commit 2018-11-11 12:01:18 +01:00			`],`
			`'ufo' => [`
			`'api.fault.put',`
			`'api.fault-attachment.post',`
			`'api.fault-comment.post',`
			`'api.fault-reject.post',`
			`],`
			`// 'betekinto' => [`
			`// 'api.fault.get',`
			`// ],`

			`'projektvezeto' => [`
			`'api.fault.put',`
			`'api.report.post',`
			`'api.fault-attachment.post',`
			`'api.fault-comment.post',`
			`'api.maintenance',`
			`'api.maintenance.put',`
			`'api.maintenance.upcoming',`
* logger added * calendar view in maintenance * $year filter support in xlsx and maintenance 2018-11-19 16:48:12 +01:00			`'api.maintenance.calendar',`
* initial commit 2018-11-11 12:01:18 +01:00			`],`
			`'karbantarto' => [`
			`],`
			`// anybody logged in has the 'user' meta role, its not assignable otherwise`
			`// api endpoints defined here are accessible to all authenticated users`
			`'user' => [`
			`'api.auth.renew',`
			`'api.user.list',`
			`'api.user.profile',`
			`'api.user.password',`
			`// 'api.settings.post',`
			`'api.error-category.get',`
			`'api.error-origin.get',`
			`'api.facility-location.get',`
			`'api.solution-time-interval.get',`
			`'api.fault.get',`
			`'show-attachment',`
			`],`
			`],`
			`],`
			`],`
			`];`