StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
20331797
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
1
CommunityOwnedDate
CreationDate
2013-12-02T15:25:37.007
FavoriteCount
0
LastActivityDate
2013-12-03T07:24:49.297
LastEditDate
2013-12-03T07:24:49.297
LastEditorUserId
607033
OwnerUserId
607033
ParentId
3224893
PostTypeId
2
Score
1
ViewCount
0
LastEditorDisplayName
text
Body
<blockquote> My question is basically should users see different representations for the same URI, or should users be directed to different URIs based on their permissions? For example: User A and User B have different permissions in the system. They log in with different credentials, to the same start URI. A successful response may be one of the following 2: <ol> <li>200 OK, and User A sees something different than user B on the same URI</li> <li>302 (or other redirect) each user to e.g. /endpoint/userA (which they own)</li> </ol> </blockquote> Both ways are RESTful. The representation of a resource can depend on the permissions. The communication is stateless because you send the credentials (username, password) with http auth by every request. Redirection to another representation variant after permission check is a great idea. That way you can completely separate the authorization logic from the resource representation logic, so you can move it even to another server and you can create very well cacheable resource representations. For example by <code>GET /endpoint/userA</code> you can redirect <code>userA</code> to <code>/endpoint/userA?owner=true</code>, because she is the owner of the profile, or you can create a composition of features: <code>/endpoint/userA?feature1=true&feature2=false</code> etc... It is very easy to setup fine grained access control for that. Another way to stay cacheable if you append the user id to every request's queryString, but this solution with redirection is much cleaner. Thank you for that!
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. PORESTful HTTP: Showing different representations to two users on the same URI
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. USinf3rno
UserOwnerUserId
1. USinf3rno
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. COVery valid point, pointing out the compliance to e.g. the stateless constraint. Indeed both are valid, as long as e.g. the credentials of the user is passed in each interaction.
 singulars
 PostPostId
 PO
 UserUserId
 USmogsie

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.