Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow to set API Keys permissions #5234

Open
darekdesu opened this issue Apr 30, 2024 · 0 comments
Open

Allow to set API Keys permissions #5234

darekdesu opened this issue Apr 30, 2024 · 0 comments

Comments

@darekdesu
Copy link
Contributor

Scope & Context

Created API key has too much permissions (all of them :)) and can negatively affect security in case of its leakage. It also limits ability to share API token with any kind of 3rd party data providers.

Current behavior

Cannot set the scope for created API key

Expected behavior

Ability to set the scope for created API keys like on e.g. on the Github itself where one could set read,write,delete permissions for various API endpoints.

For Twenty the example MVP could be to add selectable scopes like read,create,update,delete for People/Companies/Opportunities and disable of permissions for other actions.

Screenshot for reference:
api-scopes

Technical inputs

N/A
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
Product development ✅
Status: 🆕 New
Milestone
No milestone
Development

No branches or pull requests
2 participants
@darekdesu and others