As a user, I can use REST API to add object level permission to a user
There are multiple ways to enable this use case:
/pulp/api/v3/users/<uuid>/permissions/ API to accept POST, PUT, and PATCH requests for updating user permissions. However, I suspect this would probably present a challenge for the user because each time permissions are being modified, all permissions would need to be submitted in the request. My suspicion is based on an assumption that all permissions are stored in a single JSON object.
The other option is to add separate endpoints for adding and removing permissions. e.g.
Please note that I have not looked into django-guardian what Views and ViewSets it provides for this functionality.
Please register to edit this issue