violet_rails permissions v2 (spec WIP)

permissions v2 (spec WIP)

Open donrestarone opened this issue 3 years ago • 0 comments

Is your feature request related to a problem? Please describe.

Currently, we don't manage entity instance level permissions well.

Describe the solution you'd like

Ability to grant instance level permissions with cascade. Eg: allowing user A to access API Namespace people grants user A the ability to access all entities under that specific API Namespace (connections, forms, actions)

Separate out permissions to its own table (`user_permissions`)

Sunset most powerful permission `can_manage_users` in favor of `owner`

New UI for assigning permissions

Retain the ability to access all entities under `can_manage` nomenclature

eg; can manage users should confer the right to manage all users, not just 1 user. Alternately, on a per entity basis-- Can manage user x should confer the right to manage user x as well

Jul 14 '22 00:07 donrestarone

violet_rails violet_rails copied to clipboard

permissions v2 (spec WIP)

Separate out permissions to its own table (user_permissions)

Sunset most powerful permission can_manage_users in favor of owner

New UI for assigning permissions

Retain the ability to access all entities under can_manage nomenclature

violet_rails
violet_rails copied to clipboard

Separate out permissions to its own table (`user_permissions`)

Sunset most powerful permission `can_manage_users` in favor of `owner`

Retain the ability to access all entities under `can_manage` nomenclature