Story #8090

Updated by pulpbot over 2 years ago


 **Ticket moved to GitHub**: "pulp/pulpcore/1959": 


 There are multiple ways to enable this use case: 

 Enable the `/pulp/api/v3/users/<uuid>/permissions/` API to accept POST, PUT, and PATCH requests for updating user permissions. However, I suspect this would probably present a challenge for the user because each time permissions are being modified, all permissions would need to be submitted in the request. My suspicion is based on an assumption that all permissions are stored in a single JSON object. 

 The other option is to add separate endpoints for adding and removing permissions. e.g.    `/pulp/api/v3/users/<uuid>/add_permissions/` and `/pulp/api/v3/users/<uuid>/remove_permissions/`  

 Please note that I have not looked into django-guardian what Views and ViewSets it provides for this functionality.