From fa7ffd9d1594a5bc9dba4fc65af0a4100988341b Mon Sep 17 00:00:00 2001
From: Fabian Mastenbroek <mail.fabianm@gmail.com>
Date: Fri, 2 Jul 2021 16:47:40 +0200
Subject: api: Restrict API scopes

This change adds support for restricting API scopes in the OpenDC API
server. This is necessary to make a distinction between runners and
regular users.
---
 opendc-web/opendc-web-api/static/schema.yml | 1 +
 1 file changed, 1 insertion(+)

(limited to 'opendc-web/opendc-web-api/static/schema.yml')

diff --git a/opendc-web/opendc-web-api/static/schema.yml b/opendc-web/opendc-web-api/static/schema.yml
index 5a8c6825..6a07ae52 100644
--- a/opendc-web/opendc-web-api/static/schema.yml
+++ b/opendc-web/opendc-web-api/static/schema.yml
@@ -1180,6 +1180,7 @@ components:
           tokenUrl: https://opendc.eu.auth0.com/oauth/token
           scopes:
             openid: Grants access to user_id
+            runner: Grants access to runner jobs
   schemas:
     Unauthorized:
       type: object
-- 
cgit v1.2.3