fix: add proper token validation to getUserByEmail (#169)

vtex-apps · Oct 28, 2024 · 2680141 · 2680141
1 parent 30930d5
commit 2680141
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 1 deletion.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -7,6 +7,10 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 
 ## [Unreleased]
 
+### Changed
+
+- Changed the token validation directive of the getUserByEmail operation
+
 ## [1.44.13] - 2024-10-15
 
 ### Fixed

diff --git a/graphql/schema.graphql b/graphql/schema.graphql
@@ -31,7 +31,7 @@ type Query {
   getUserByEmail(email: String!): [User]
     @cacheControl(scope: PRIVATE)
     @withSender
-    @checkUserAccess
+    @validateStoreUserAccess
 
   listAllUsers: [User]
     @cacheControl(scope: PRIVATE, maxAge: SHORT)