Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Basic Role Based Acccess Management #66

Closed
dominic22 opened this issue Mar 23, 2021 · 1 comment · Fixed by #76
Closed

Basic Role Based Acccess Management #66

dominic22 opened this issue Mar 23, 2021 · 1 comment · Fixed by #76
Assignees
@dominic22
Milestone
Full Duration

Comments

@dominic22
Copy link
Contributor

dominic22 commented Mar 23, 2021
edited
Loading

A user has a role which identifies privileges he is able to do.

For simplification this role can be: 'admin' or 'user'!

Admins can for instance users of other companies or update/delete other users which are not themself.

Role can be extracted from jwt of the bearer token!

Create admin user on startup like the api server via admin.ts tool!

adjust authorization mechamism to consider admin privileges!
tests for the admin authorization mechanism
@dominic22 dominic22 changed the title Role Based Acccess Management Basic Role Based Acccess Management Mar 23, 2021
@dominic22 dominic22 self-assigned this Mar 23, 2021
@DuncanMain DuncanMain added this to the Full Duration milestone Mar 24, 2021
@dominic22
Copy link
Contributor Author

dominic22 commented Mar 25, 2021
edited
Loading

maybe we also need an organization admin as well. these admins are able to delete users from their organization but not from others.

so 3 roles:
admin > org-admin > user

@dominic22 dominic22 linked a pull request Apr 7, 2021 that will close this issue
66, 9, 44 role based access management & authorization #76
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dominic22 dominic22

Labels
None yet
Projects
None yet
Milestone
Full Duration
Development

Successfully merging a pull request may close this issue.

66, 9, 44 role based access management & authorization iotaledger/integration-services
2 participants
@dominic22 @DuncanMain