discourse/spec/fabricators/user_api_key_fabricator.rb
Sam f4f5524190 FEATURE: user API now contains scopes so permission is granular
previously we supported blanket read and write for user API, this
change amends it so we can define more limited scopes. A scope only
covers a few routes. You can not grant access to part of the site and
leave a large amount of the information hidden to API consumer.
2016-10-14 16:05:42 +11:00

8 lines
178 B
Ruby

Fabricator(:readonly_user_api_key, from: :user_api_key) do
user
scopes ['read']
client_id { SecureRandom.hex }
key { SecureRandom.hex }
application_name 'some app'
end