Policies for resources determine what actions can be taken on the resource, what attributes can be read, and which attributes can be written.
api/policies/SwordPolicy
:
operations.CREATE
aka SwordResource.create
methodoperations.DELETE
aka SwordResource().delete
methodoperations.DETAIL
aka SwordResource.member
methodoperations.LIST
aka SwordResource.collection
methodoperations.UPDATE
aka SwordResource().update
methodOauthScope.CLIENT_PRIVATE
; user must be logged in to have accessOauthScope.CLIENT_PUBLIC
; user must be logged out to have access