Annotation Interface IsAuthorizedProductOrderUpdate
@Target(METHOD)
@Retention(RUNTIME)
@PreAuthorize("hasRole(\'TRUSTED_CLIENT\') OR @userValidator.isAuthorizedForProductOrderUpdate(authentication, #productOrder.relatedParty, #id)")
public @interface IsAuthorizedProductOrderUpdate
Annotation for securing rest endpoints.
A client application performing a call to this API for a client having trusted role, should be able to update any order. In case there is an authenticated user that user should be the approver of the company for which order is to be updated otherwise the operation should not be permitted.
A client application performing a call to this API for a client having trusted role, should be able to update any order. In case there is an authenticated user that user should be the approver of the company for which order is to be updated otherwise the operation should not be permitted.
- Since:
- 2105