Skip to content

allow API access using commerce-api tokens #66

Description

@maxakuru

allow either superuser key or commerce JWT as the bearer token to call the sync API. If the token matches the superuser key, allow the call to proceed, otherwise call commerce-api to validate the token. If the token is invalid, reject the request. If it's valid, decode the payload and check the roles. If it contains admin then allow the call to continue.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions