If you have a comment on this topic, contact Aptify Documentation. If you want to return to the Aptify Community Site, please click here.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

Value Comparer Requirement

This requirement compares two values.  If they are equal the requirement passes.  If they are different the requirement fails.

Value Comparer Requirement Metadata

Property NameValueDescription

expectedValue

stringThe value we expect to have to satisfy the requirement
actualValuestringThe value we check against the exepectedValue to see if the requirement passes.

The metadata below is for a requirement that only passes if the authenticated user is a particular person.  It uses Input Context Objects for some values.

Value Comparer Metadata Example
{
  "endpoints": {
    "ExamplesGetSingleProduct": {
      "route": {
        "httpMethod": "GET",
        "segments": {
          "examples": {
            "isLiteral": true,
            "type": "string"
          },
          "products": {
            "isLiteral": true,
            "type": "string"
          },
          "productId": {
            "isLiteral": false,
            "type": "long"
            "security": {
              "CurrentPersonIsAiesha": {
                "type": "ValueComparer",
                "parameters": {
                  "expectedValue": "1",
                  "actualValue": "@AuthenticatedAttributes.AuthenticatedPrincipalRecordId"
                }
              }
            }            
          }
        }
      }     
    }
    //remaining metadata omitted
  }
}
Why did we add this security block to a route segment instead of the end point or an input entity field?  

If we had put it at the end point level it would have had no effect.  Remember, only one requirement in a collection needs to pass for the entire collection to pass.  By default the framework always adds an authentication requirement to the end point collection.  If this requirement was also at the end point level we would have and the authenticated person was not person id 1, we would have:

Collection NameRequirementsResult
EndpointRequire Authentication, CurrentPersonIsAieshaCurrentPersonIsAiesha fails but Requires Authentication passes, so this entire collection passes.
RouteNonePass
Input FieldsNonePass

When we move it to the route segment level we have:

Collection NameRequirementsResult
EndpointRequire AuthenticationPass
RouteCurrentPersonIsAieshaFail
Input FieldsNonePass

And the request fails if the person is not Aiesha.  This rule could have also been added at the input entity field level to achieve the same result.  

  • No labels

Copyright © 2014-2019 Aptify - Confidential and Proprietary