Task #661
closed
Identity Accounts - add authorization policies support
100%
Description
- Give permission for identity account by identity
- Secure find method on role and tree account.
Updated by Radek Tomiška over 6 years ago
- Status changed from In Progress to Needs feedback
- Assignee changed from Radek Tomiška to Ondřej Kopr
- % Done changed from 0 to 90
Identity, role and tree account are secured now.
Documentation:
https://wiki.czechidm.com/devel/dev/security/authorization#identityaccountbyidentityevaluator
https://github.com/bcvsolutions/CzechIdMng/blob/develop/CHANGELOG.md#account-management
Commit:
https://github.com/bcvsolutions/CzechIdMng/commit/979ca87ed187fcc584c5068fae3b676c6129cd58
Could you pls do a test and review?
Updated by Ondřej Kopr over 6 years ago
- Status changed from Needs feedback to Resolved
- Assignee changed from Ondřej Kopr to Radek Tomiška
- % Done changed from 90 to 100
I did review evaluator works fine. Thank you for add this permission.
Only think: i can read all my accounts on systems (table view), but i cant read detail (modal window), but this is probably good behavior.
Thank you.
Updated by Radek Tomiška over 6 years ago
I see - wee needto add authorization evaluator to account, when will be refactored to dto usage. I leave it open.
Updated by Radek Tomiška over 6 years ago
- Status changed from Resolved to In Progress
- % Done changed from 100 to 80
Updated by Radek Tomiška over 6 years ago
- Status changed from In Progress to Closed
- % Done changed from 80 to 100
I did detail button on identity, role and tree node account hidden, when logged identity doesn't have authority to read acc accounts.