Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Access rights silhouette #269

Open
johannsell opened this issue Sep 21, 2018 · 0 comments
Open

Access rights silhouette #269

johannsell opened this issue Sep 21, 2018 · 0 comments
Labels
feature
Milestone
Pool Going Live

Comments

@johannsell
Copy link
Member

Precondition: Drops #267

The system has to use the list of AccessRight associated with a user to filter the access of an action. To do so, a new filter has to be implemented in app/utils/authorization/. This filter has to compare the given Request object with the list of access rights. While the base implementation of the AccessRight contains a simple URI attribute that can be compared using string comparison, we also have to consider the changes made by implementation of #267. Now there are dynamic parameters at the connection between User and AccessRight.

After all, the filter has to be used at every action! The implementation is not done, until the system-wide usage of the filter is checked.
@johannsell johannsell added this to the Pool Going Live milestone Sep 21, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature
Projects
None yet
Milestone
Pool Going Live
Development

No branches or pull requests
1 participant
@johannsell