You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently you have predefined roles (admin, operator, user) and also the instance regex. Also, one user can only have one of each.
Solution
Make permission scheme more modular.
A user belongs to one or multiple groups
A group has no or multiple permissions assigned
Permission types are predefined, but each permission might be associated with additional information when assigned to a group (e.g. the instance / template filter through regex)
Regexes are defined by the user and are reusable (Are they maybe better handled through input validation based on groups Input validation #199?)
Also we should give a usable example (ship it with the dist?)
Admin group
Operator group
User group
Permissions
Parameter arguments should be optional if possible with a sane default (e.g. no filter). Filters should be implemented to be as flexible as possible (e.g. regex).
Problem
Currently you have predefined roles (admin, operator, user) and also the instance regex. Also, one user can only have one of each.
Solution
Make permission scheme more modular.
Also we should give a usable example (ship it with the dist?)
Permissions
Parameter arguments should be optional if possible with a sane default (e.g. no filter). Filters should be implemented to be as flexible as possible (e.g. regex).
The text was updated successfully, but these errors were encountered: