OpenMetadata icon indicating copy to clipboard operation
OpenMetadata copied to clipboard

Published 20 hours ago verified publisher icon open-metadata

Refactor lineage RBAC rules so lineage information can be edited only by asset owners

Open mgorsk1 opened this issue 6 months ago • 0 comments

Is your feature request related to a problem? Please describe.

I would like regular users to be able to edit lineage information only for assets they are owners of. Consider user A (owner of schema X and hence all tables within this schema), I would like to create policy:

  • resources: all, permission: EditLineage, condition: IsOwner()

that would enable this user to only edit lineage information when tables of schema X are downstream (toEntity) in lineage request.

Describe the solution you'd like A change in way ownership information is used in LineageResourceContext.

Describe alternatives you've considered A clear and concise description of any alternative solutions or features you've considered.

Additional context This requirement would greatly improve self-service aspect of OpenMetadata.

mgorsk1 avatar Aug 12 '24 12:08 mgorsk1