Commit 708f2780 authored by Varunkumar Manohar's avatar Varunkumar Manohar
Browse files

Remove E2E tests from foundations for dataset level access task + Allow only...

Remove E2E tests from foundations for dataset level access task + Allow only tenant admins to delete the subproject
parent a69a7011
...@@ -218,9 +218,10 @@ export class SubProjectHandler { ...@@ -218,9 +218,10 @@ export class SubProjectHandler {
// get the subproject metadata // get the subproject metadata
const subproject = await SubProjectDAO.get(journalClient, tenant.name, req.params.subprojectid); const subproject = await SubProjectDAO.get(journalClient, tenant.name, req.params.subprojectid);
//Only tenant admins are allowed to delete the subproject
if (FeatureFlags.isEnabled(Feature.AUTHORIZATION)) { if (FeatureFlags.isEnabled(Feature.AUTHORIZATION)) {
// check if user is member of any of the subproject acl admin groups await Auth.isUserAuthorized(
await Auth.isUserAuthorized(req.headers.authorization, subproject.acls.admins, req.headers.authorization, [AuthGroups.datalakeUserAdminGroupEmail(tenant.esd)],
tenant.esd, req[Config.DE_FORWARD_APPKEY]); tenant.esd, req[Config.DE_FORWARD_APPKEY]);
} }
......
This diff is collapsed.
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment