Actions
Task #374
closed
Authorization Policies for identities
Status:
Closed
Priority:
Normal
Assignee:
Ondřej Kopr
Category:
Authentication / Authorization
Target version:
Start date:
05/16/2017
Due date:
05/16/2017
% Done:
100%
Estimated time:
16.00 h
Owner:
Description
- rewrite filter in IdmIdentityRepository to criteria
- add authorization policies support to identity endpoint
Related issues
Updated by Radek Tomiška about 7 years ago
- Status changed from In Progress to Needs feedback
- Assignee changed from Radek Tomiška to Ondřej Kopr
- % Done changed from 0 to 90
It's implemented, doc: https://proj.bcvsolutions.eu/ngidm/doku.php?id=roztridit:autorizacni_model
I've added two new policy evaluators:
- SelfIdentityEvaluator - Currently logged user - self permissions.
- SubordinatesEvaluator - Permissions to subordinates.
(evaluator description is direcly loaded to FE)
Could you make a test and review, please?
Updated by Ondřej Kopr about 7 years ago
- Status changed from Needs feedback to Resolved
- % Done changed from 90 to 100
I found some mirror issue (probably isn't case in this task):
- I have identity with SelfIdentityEvaluator (only READ permission), on profile -> accounts. After show detail some account, is there visible button for save (when try to save is throw reload FE). I fixed this bug with add rendered={Managers.SecurityManager.hasAnyAuthority(['SYSTEM_READ'])} to detail button.
I was tested SelfIdentityEvaluator and SubordinatesEvaluator everything else is ok.
Updated by Radek Tomiška about 7 years ago
- Due date set to 04/19/2017
- Start date changed from 04/18/2017 to 04/19/2017
- Follows Task #375: Authorization Policies - roles and identities tabs added
Updated by Radek Tomiška about 7 years ago
- Due date deleted (
04/19/2017) - Status changed from Resolved to Closed
Thx for fixing issue with account. I will continue with other tabs on identitydetail in #375.
Actions