Protect "transactions" endpoint

Question

Protect "transactions" endpoint

thevahidal opened this issue 3 months ago · comments

Is your feature request related to a problem? Please describe.
Right now that we introduced authentication and authorization we need to protect transactions endpoint as well, as it has all the privileges on database.

Describe the solution you'd like
Transactions endpoint should be used only by superusers.

Describe alternatives you've considered
We can get rid of this endpoint since there's no obvious usage for it.

Additional context
N/A

Ian Mayo · Answer 1 · Thu Mar 21 2024 20:34:54 GMT+0800 (China Standard Time)

I'd quite like something more subtle than superusers. What if we also add a flag in Role or User that indicates that the role can submit transactions?

There could be sense in your alternative. We could Archive the end-point until someone has a requirement for it. Then we re-implement it, including protection.

Vahid Al · Answer 2 · Thu Mar 21 2024 21:11:25 GMT+0800 (China Standard Time)

Yeah, I agree to archive / delete it for now.

Ian Mayo · Answer 3 · Thu Mar 21 2024 21:24:59 GMT+0800 (China Standard Time)

Hmm, I've just thought of a half-way house. How about it is only enabled if auth is off? If it is called with auth on, we could return an error indicating that The transactions end-point is not currently compatible with Soul authentication.

Vahid Al · Answer 4 · Thu Mar 21 2024 22:55:05 GMT+0800 (China Standard Time)

That's actually a good idea, though from the beginning of Soul I was really concerned about this endpoint as the power it has is too much.