Uploaded image for project: 'Data Management'
  1. Data Management
  2. DM-5645

Add fine-grained authorization to ltd-keeper users

    XMLWordPrintable

    Details

      Description

      The initial MVP of ltd-keeper had all-or-nothing authentication; any user was effectively an admin user. It would be useful have fine grained roles that each API user could have (for example, one API user might be able to add a build, but not create an edition or product or add another user). The phases of this ticket at:

      1. Design a set of roles that cover current functionality
      2. Add these roles to the User DB model and user creation API
      3. Authorize users against these roles in specific API calls

        Attachments

          Issue Links

          is triggering

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. DM-5678 Add LSST the Docs Keeper API routes for creating new API users

          • Invalid

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. DM-5679 Change LSST the Docs Keeper response content based on API user authorization level

          • Invalid

            Activity

            Ascending order - Click to sort in descending order
            Hide
            Permalink
            jsick Jonathan Sick added a comment -

            This PR adds Permissions to individual users so that routes can ensure a user has that permission. Note I haven’t added the /users/ route in this ticket to create new users with specific API permissions.

            Show
            jsick Jonathan Sick added a comment - This PR adds Permissions to individual users so that routes can ensure a user has that permission. Note I haven’t added the /users/ route in this ticket to create new users with specific API permissions.
            Hide
            Permalink
            jmatt J Matt Peterson [X] (Inactive) added a comment -

            Looks good. Review comments are on the GitHub PR.

            Show
            jmatt J Matt Peterson [X] (Inactive) added a comment - Looks good. Review comments are on the GitHub PR.
            Hide
            Permalink
            jsick Jonathan Sick added a comment -

            Thanks J Matt Peterson [X]. I’ll catch you again when I add the /users/ route.

            Show
            jsick Jonathan Sick added a comment - Thanks J Matt Peterson [X] . I’ll catch you again when I add the /users/ route.

              People

              Assignee:
              jsick Jonathan Sick
              Reporter:
              jsick Jonathan Sick
              Reviewers:
              J Matt Peterson [X] (Inactive)
              Watchers:
              J Matt Peterson [X] (Inactive), Jonathan Sick
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Jenkins

                  No builds found.