Project

General

Profile

Actions
Copy link

Task #356

closed

Role detail - remove tab with authorities

Added by Radek Tomiška about 7 years ago. Updated almost 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Radek Tomiška
Category:
Authentication / Authorization
Target version:
Citrine (7.3.0)
Start date:
04/04/2017
Due date:
% Done:

100%

Estimated time:
6.00 h
Owner:

Description

Now is authorites editable together with whole role detail. This is problematic:
  • lazy list in entity,
  • security - only someone could edit authorities and this is not implemented (every one with role update could edit authorities)
Authorities will be loaded by authorization policies. Reimplement whole authorities mechanism:
  • remove lazy list from role entity
  • remove tab with authorities
  • load identity's authorities by granted authorization policies - use it in login (redesign GrantedAuthoritiesFactory) and authorities panel
  • update all tests (GrantedAuthoritiesFactory, AuthenticationManager ...)
  • add authority hierarchy - work withadmin authorities (wildcard)
Actions
Copy link
 #1

Updated by Radek Tomiška about 7 years ago

  • Subject changed from Role detail - new tab with authorities to Role detail - remove tab with authorities
  • Description updated (diff)
  • Status changed from New to In Progress
  • % Done changed from 0 to 70
Actions
Copy link
 #2

Updated by Radek Tomiška about 7 years ago

  • Status changed from In Progress to Needs feedback
  • Assignee changed from Radek Tomiška to Ondřej Kopr
  • % Done changed from 70 to 90

All features from description are implemented. I've updated doc https://proj.bcvsolutions.eu/ngidm/doku.php?id=roztridit:autorizacni_model#implementace.

Could you please make a test and review?

Actions
Copy link
 #3

Updated by Ondřej Kopr about 7 years ago

  • Assignee changed from Ondřej Kopr to Radek Tomiška

Looks great. Some features from this task i was tested in another tasks. I didn't found any bugs for now. Thanks you for nice documentation.

Only issues that i found is:
  • in erdiagram i found table RoleAuthority this table isn't exists anymore (or?),
  • in tables (postgresql) i found table idm_role_authority_a this tables can be droped.
Actions
Copy link
 #4

Updated by Radek Tomiška almost 7 years ago

  • Status changed from Needs feedback to Closed
  • % Done changed from 90 to 100

Thx for feedback, issues are fixed.

Actions
Copy link

Also available in: Atom PDF