Project

General

Profile

Actions

Feature #1146

closed

Managers should change roles only for the contracts, for which they are managers

Added by Alena Peterová over 6 years ago. Updated over 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Radek Tomiška
Category:
Roles
Target version:
Start date:
01/06/2020
Due date:
% Done:

100%

Estimated time:
Owner:

Description

This is a security feature.
The scenario:
  • The user has 2 contracts
  • First contract has a manager A, the second contract the manager B
  • The manager A requests a role change. He can assign or remove roles to/from both contracts.

The manager A should be able to change the roles only for the first contract.
The manager B should be able to change the roles only for the second contract.

Also in the approval round for role requests - approval by manager - there should be only the manager of the contract, for which are the roles requested.


Related issues

Related to IdStory Identity Manager - Task #1085: Display the contract in the tasks of the role requestClosedOndřej Kopr04/26/2018

Actions
Related to IdStory Identity Manager - Task #2002: Managers of contracts ended in the past shouldn't be able to change roles for currect contractClosedRadek Tomiška01/06/2020

Actions
Related to IdStory Identity Manager - Task #2204: Authorization policies: Add permission to identity by contract (transitively)ClosedRadek Tomiška04/14/2020

Actions
Related to IdStory Identity Manager - Task #2220: Split role request approval by contract managersNewVít Švanda04/20/2020

Actions
Related to IdStory Identity Manager - Feature #2926: Bulk action: Assign role to identity for contract managers and role guaranteesClosedRadek Tomiška09/01/2021

Actions
Actions

Also available in: Atom PDF