Group permissions manager #107
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Separately, this has tidied up a lot of stray files -- that should be separately merged to main and then this PR rebased. |
philtweir
force-pushed
the
feature/group-permissions-manager
branch
from
8ac4bff to
6d07431
Compare
philtweir
force-pushed
the
feature/group-permissions-manager
branch
from
6d07431 to
a29e0df
Compare
… be called before it migrates
|
@taylorn01 @OwenGalvia keen to get this to main, but not sure what the best approach is, as would be good to get your input -- perhaps if you find this works for you, we can chat during the week and suggest some steps? |
…a 'principal user' (naive implementation)
philtweir
commented
Jan 24, 2024
| framework.recalculate_table() | ||
| enforcer.model.print_policy() | ||
| print(enforcer.get_implicit_permissions_for_user("u:310")) | ||
| #group_tree = {} |
| self.userAccountCards = { | ||
| userAccount: self.cards?.['user account'] | ||
| }; | ||
| console.log(self.userAccountCards, "CARDS"); |
| const userAccountNode = self.getRawNodeValue(params.data(), self.dataConfig.userAccount); | ||
|
|
||
| if(userAccountNode){ | ||
| console.log("USER ACCOUNT", userAccountNode); |
| @@ -92,9 +187,9 @@ | |||
| "CONN_MAX_AGE": 0, | |||
| "ENGINE": "django.contrib.gis.db.backends.postgis", | |||
| "HOST": "localhost", | |||
| "NAME": "coral", | |||
| "NAME": "arches2", | |||
| @@ -190,9 +296,31 @@ | |||
| # when hosting Arches under a sub path set this value to the sub path eg : "/{sub_path}/" | |||
| FORCE_SCRIPT_NAME = None | |||
|
|
|||
| FORCE_USER_SIGNUP_EMAIL_AUTHENTICATION = False | |||
There was a problem hiding this comment.
add comment:
this allows us to onboard a user via magic link without allowing self-onboarding
| @@ -22,3 +22,6 @@ semantic_version | |||
| PyJWT | |||
| requests_oauthlib | |||
| python-docx | |||
|
|
|||
| git+https://github.com/flaxandteal/arches-orm@master | |||
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Draft implementation of the group permission manager. This depends on a new external Python module, which is also undergoing iteration.
At present, this is blocked on having a concept to express the available permissions. It also needs work around the node groups, hiding entries from the search results and, as it recalculates the table on each user/resource check (most likely unnecessarily even once a request), will be inefficient.