[YC-872] Secure string attribute type Created: 22/Feb/18  Updated: 03/Nov/18  Resolved: 24/Feb/18

Status: Closed
Project: YesCart
Component/s: manager client, manager server
Affects Version/s: 3.4.0
Fix Version/s: 3.4.0

Type: New Feature Priority: Major
Reporter: Denis Pavlov Assignee: Denis Pavlov
Resolution: Fixed Votes: 0
Labels: api, ui, usability
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified


 Description   

As a business user I would like some of the attribute values to be masked until I actually try to edit them.

Some TD ideas:

  • add new SecureString type which can be masked on the attribute view
  • PGs should have this too?
  • possibly filter out this type of property in some cases completely (e.g. if we do not have edit rights? e.g. not SHOPADMIN?)


 Comments   
Comment by Denis Pavlov [ 24/Feb/18 ]

JAM interfaces for shop attributes and PGs now have two access modes: default and secure. By default all secure attributes/parameters are filtered out, only in secure mode they are included.

Two modes are accessed via different REST API and thus different set of ROLES can be applied. Secure mode uses stricter ROLE set.

Comment by Denis Pavlov [ 24/Feb/18 ]

https://github.com/inspire-software/yes-cart/commit/c517aa3c5dfc80a305947757e07ec28bdaf60e42

Generated at Sat Sep 19 22:06:52 UTC 2020 using JIRA 7.8.0#78000-sha1:4568b9d484113d74dfb6f152fb925b5fa1be2ef7.