EntityPermissions are a layer of permissions directly applied on user generated contents and are one core part of the intratool permission handling.
To read more about the concept of EntityPermissions, head to the introduction section about them.
Model Definition
Structure
| Field | Description | Example Value |
|---|
| | |
| Model (alias) to grant the permission key for. | |
| The id of the Model to grant the permission key for. | |
| Target Model (alias) to grant the permission key for. | |
| The id of the target Model to grant the permission key for. | |
Relations
| Key | Relation | Type | Relation Field(s) |
|---|
| | | permission_entity, permission_entity_id
|
| | | target_entity, target_entity_id
|
List by target entity
Get a list of EntityPermissions for given target entity.
Definition
GET /api/entity-permissions/{targetEntity}/{targetEntityId}
Example Request
$client = new GuzzleHttp\Client(['base_uri' => 'https://{tenant}.intratool.de']);
$response = $client->request('GET', '/api/entity-permissions/taskAssignment/10', [
'headers' => ['Authorization' => "Bearer {accessToken}"]
]);
Example Response Body
[
{
"id": 1,
"key": "view",
"permission_entity": "department",
"permission_entity_id": 25,
"target_entity": "taskAssignment",
"target_entity_id": 10,
"created_at": "2024-06-01 12:00:00",
"updated_at": "2024-06-01 12:00:00",
"deleted_at": null
},
{
"id": 2,
"key": "view",
"permission_entity": "department",
"permission_entity_id": 26,
"target_entity": "taskAssignment",
"target_entity_id": 10,
"created_at": "2024-06-01 13:00:00",
"updated_at": "2024-06-01 13:00:00",
"deleted_at": null
}
]
Show
Show a single EntityPermission by id.
Definition
GET /api/entity-permissions/{id}
Example Request
$client = new GuzzleHttp\Client(['base_uri' => 'https://{tenant}.intratool.de']);
$response = $client->request('GET', '/api/entity-permissions/1', [
'headers' => ['Authorization' => "Bearer {accessToken}"]
]);
Example Response
{
"id": 1,
"key": "view",
"permission_entity": "department",
"permission_entity_id": 25,
"target_entity": "taskAssignment",
"target_entity_id": 10,
"created_at": "2024-06-01 12:00:00",
"updated_at": "2024-06-01 12:00:00",
"deleted_at": null
}
Create or update
Create a new EntityPermission. When a EntityPermission with the given data already exits, the updated_at timestamp will be updated.
Definition
POST /api/entity-permissions
Request Keys
| Key | Type | Default | Description |
|---|
| | | |
| | | Model (alias) to grant the permission key for. |
| | | The id of the Model to grant the permission key for. |
| | | Target Model (alias) to grant the permission key for. |
| | | The id of the target Model to grant the permission key for. |
Keys with * are required.
Example Request
$client = new GuzzleHttp\Client(['base_uri' => 'https://{tenant}.intratool.de']);
$response = $client->request('POST', '/api/entity-permissions', [
'headers' => ['Authorization' => "Bearer {accessToken}"],
'json' => [
'key' => 'view',
'permission_entity' => 'department',
'permission_entity' => 27,
'target_entity' => 'taskAssignment',
'permission_entity' => 10,
]
]);
Example Response Body
{
"status": "success",
"data": {
"id": 3,
"key": "view",
"permission_entity": "department",
"permission_entity_id": 27,
"target_entity": "taskAssignment",
"target_entity_id": 10,
"created_at": "2024-06-01 14:00:00",
"updated_at": "2024-06-01 14:00:00",
"deleted_at": null
}
}
Delete
Delete an existing EntityPermission by id.
Definition
DELETE /api/entity-permissions/{id}
Example Request
$client = new GuzzleHttp\Client(['base_uri' => 'https://{tenant}.intratool.de']);
$response = $client->request('DELETE', '/api/entity-permissions/3', [
'headers' => ['Authorization' => "Bearer {accessToken}"]
]);
Example Response
{
"status": "success",
"data": []
}
Last updated
