Add more granular OAuth scopes (#7929)

* Add more granular OAuth scopes * Add human-readable descriptions of the new scopes * Ensure new scopes look good on the app UI * Add tests * Group scopes in screen and color-code dangerous ones * Fix wrong extra scope
author: Eugen Rochko <eugen@zeonfederated.com> 2018-07-05 18:31:35 +0200
committer: GitHub <noreply@github.com> 2018-07-05 18:31:35 +0200
commit: 1f6ed4f86ab2aa98bb271b40bf381370fab4fdf2 (patch)
tree: c7f4668bc9e5fae31ea8dc8b7dd10edd0f2c1164 /app/controllers/api/v1/domain_blocks_controller.rb
parent: ca2cc556f1875e431ea9ceb2d3f4766366c76846 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/app/controllers/api/v1/domain_blocks_controller.rb b/app/controllers/api/v1/domain_blocks_controller.rb
index e55d622c3..af9e7a20f 100644
--- a/app/controllers/api/v1/domain_blocks_controller.rb
+++ b/app/controllers/api/v1/domain_blocks_controller.rb
@@ -3,7 +3,8 @@
 class Api::V1::DomainBlocksController < Api::BaseController
   BLOCK_LIMIT = 100
 
-  before_action -> { doorkeeper_authorize! :follow }
+  before_action -> { doorkeeper_authorize! :follow, :'read:blocks' }, only: :show
+  before_action -> { doorkeeper_authorize! :follow, :'write:blocks' }, except: :show
   before_action :require_user!
   after_action :insert_pagination_headers, only: :show
author	Eugen Rochko <eugen@zeonfederated.com>	2018-07-05 18:31:35 +0200
committer	GitHub <noreply@github.com>	2018-07-05 18:31:35 +0200
commit	1f6ed4f86ab2aa98bb271b40bf381370fab4fdf2 (patch)
tree	c7f4668bc9e5fae31ea8dc8b7dd10edd0f2c1164 /app/controllers/api/v1/domain_blocks_controller.rb
parent	ca2cc556f1875e431ea9ceb2d3f4766366c76846 (diff)