From 6ea5f66489fa82772aa09e22f051ab46e6c486a5 Mon Sep 17 00:00:00 2001
From: Tobias Gross-Vogt <tgros@tugraz.at>
Date: Mon, 21 Feb 2022 15:31:12 +0100
Subject: [PATCH] added access restriction

---
 src/Entity/CourseAttendee.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/Entity/CourseAttendee.php b/src/Entity/CourseAttendee.php
index 7ce7bcb..2e668c8 100644
--- a/src/Entity/CourseAttendee.php
+++ b/src/Entity/CourseAttendee.php
@@ -15,6 +15,7 @@ use Symfony\Component\Serializer\Annotation\Groups;
  *     collectionOperations={
  *         "get" = {
  *             "path" = "/course_attendees",
+ *             "security" = "is_granted('IS_AUTHENTICATED_FULLY')",
  *             "openapi_context" = {
  *                 "tags" = {"Courses"}
  *             }
@@ -41,6 +42,7 @@ use Symfony\Component\Serializer\Annotation\Groups;
  *     itemOperations={
  *         "get" = {
  *             "path" = "/course_attendees/{identifier}",
+ *             "security" = "is_granted('IS_AUTHENTICATED_FULLY')",
  *             "openapi_context" = {
  *                 "tags" = {"Courses"}
  *             }
-- 
GitLab