Throughout this tutorial, consider an example of a car dealership which has created a custom back-end
CarInfoStore API to record information about what cars are on the lot, their prices, whether they have been sold or not, and so on. Table 1 shows a group of sample APIs.
|Retrieve a list of all cars in the database.
|Add a new car to the database.
|Get information about a specific car.
|Modify information about a specific car.
|Remove a specific car from the database.
|Retrieve the specific car's status.
|Modify the specific car's status.
Consider the following example:
You want to add authorization to this existing application using the Entitlements Systems to suit the business needs of the car dealership. For example, only managers can remove specific cars from the database, or modify them once they are recorded. Only sales staff can modify a car's status.