Uploaded image for project: 'Fedora Repository Project'
  1. Fedora Repository Project
  2. FCREPO-2762

Add current 4.7.x permission checks to the WebACFilter

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: Fedora 5.0.0
    • Component/s: f4-auth
    • Labels:
    • Roadmap Theme:
      API Specification, Services: Authorization
    • Epic Link:
    • Sprint:
      Fedora 2018 API Alignment 02

      Description

      Add the current 4.7.x permission checks to the WebACFilter as Shiro role and permission checks. Authenticated users with the role "fedoraAdmin" must be allowed to do anything, while authenticated users with the role "fedoraUser" must be subject to authorization check of a specific permission.

      Current (4.7.x) permission checks:

      • GET requires an acl:read mode permission on the request resource
      • PUT/POST/PATCH/DELETE requires an acl:write mode permission on the request resource
      • other modes (acl:append, acl:control) are not yet implemented

       
       
       

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              peichman-umd Peter Eichman
              Reporter:
              peichman-umd Peter Eichman
              Reviewer:
              Jared Whiklo
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: