projects / akkoma / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
[#1427] Extra check that admin OAuth scope is used by admin. Adjusted tests.
[akkoma] / docs / API / admin_api.md
diff --git a/docs/API/admin_api.md b/docs/API/admin_api.md
index 2cac317def2df0790ae1ffd04db05ec0fd455c66..b19793150226d8ad0d06013d4b9bac78655cde44 100644 (file)
--- a/docs/API/admin_api.md
+++ b/docs/API/admin_api.md
@@ -2,6 +2,13 @@
 
 Authentication is required and the user must be an admin.
 
+Configuration options:
+* `[:auth, :enforce_oauth_admin_scope_usage]` — OAuth admin scope requirement toggle.
+    If `true`, admin actions explicitly demand admin OAuth scope(s) presence in OAuth token (client app must support admin scopes).
+    If `false` and token doesn't have admin scope(s), `is_admin` user flag grants access to admin-specific actions.
+    Note that client app needs to explicitly support admin scopes and request them when obtaining auth token.
+
 ## `GET /api/pleroma/admin/users`
 
 ### List users
Fork of https://akkoma.dev/AkkomaGang/akkoma.git