ЕСОЗ - публічна документація

Skip to end of banner Go to start of banner

Get Merge Request by ID

Skip to end of metadata

Created by Bogdana Konovalenko (Unlicensed) on Jan 16, 2019

Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Purpose

This service is designed to obtain list of merge requests by NHS user.

Overview

only users with scope "merge_request:read" can get list of merge_request

Specification

GraphQL schema
Features

Validation

Validate token

Verify the validity of access token
- Return 401 in case validation fails
token is not expired
- in case error return 401
Validate client_id is NHS
1. check client type is NHS
  1. in case of error rerun forbidden error (Client is not allowed to the action')

Validate scopes

Check user scopes in order to perform this action (scope = 'merge_request:read')
1. Return forbidden in case invalid scope(s) -"Your scope does not allow to access this resource. Missing allowances: merge_request:read"

Validate context

Return response to user limited by context from user's token
1. return limited response by manual_merge_requests.assignee_id=$user_id and manual_merge_requests.status in ('NEW', 'POSTPONED')
  1. in case of error return forbidden ('You are not allowed to view this merge request)
Validate merge_request id. Check merge_requests.id = $.id
1. in case error return 404 ("Merge request with id=$id doesn't exist")

No labels

ЕСОЗ - публічна документація