Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Document user roles concept/feature #207

Open
pmaier1 opened this issue Jul 13, 2022 · 4 comments
Open

Document user roles concept/feature #207

pmaier1 opened this issue Jul 13, 2022 · 4 comments

Comments

@pmaier1
Copy link

pmaier1 commented Jul 13, 2022
edited
Loading

Where

What

Basic idea / framework

  • Enable a differentiation between users based on roles
    a) Segregation of duties in administration
    b) Different types of users (guest, project manager, regular employee, etc.)
  • Roles are a composition of different permissions in the system
  • The system enables an organization to define their own user roles just as desired

Example
Screenshot from 2022-07-13 16-36-30

Admin doc

  • Which default roles are available?
  • How are the default roles composed? Which permissions do they carry?
  • Which permissions are available in the system?
  • How can I change role composition?
  • How can I assign roles to users?
  • How does the system work with external LDAP/IdP?
  • tbd
@pmaier1 pmaier1 changed the title Document user roles concept Document user roles concept/feature Jul 13, 2022
@pmaier1
Copy link
Author

pmaier1 commented Oct 14, 2022

@mmattel

@mmattel
Copy link
Contributor

mmattel commented Oct 14, 2022

No worry havent forgotten this, needed to prioritize. Already in contact with rhafer.

@mmattel
Copy link
Contributor

mmattel commented Oct 18, 2022

For the current implementation see: https://github.com/owncloud/ocis/blob/master/services/settings/pkg/store/defaults/defaults.go#L10

@mmattel mmattel mentioned this issue Oct 20, 2022
Closed
@pmaier1
Copy link
Author

pmaier1 commented Oct 26, 2022

Feedback on the current state (https://doc.staging.owncloud.com/ocis/next/deployment/general/roles-permissions.html)

  • Please introduce the feature and what it's good for
    • Segregation of duties in administration
    • Differentiation of user types (regular user, guest, project lead, etc.)
  • Please explain all the permissions behind the roles (e.g., what does the permission "Create Space" allow a user to do)
  • Please focus on permissions, less on the roles. The roles are just defaults/examples and will be customizable later on.
  • Please don't compare with oC 10
  • Please rename the "Space roles" to "Sharing roles". The only difference between regular sharing and Spaces is the Manager role which only applies to Spaces.
  • Please move the "Sharing roles" somewhere else. They are for sharing. The roles and permissions system is for user management.
  • Please remove all references to differences between Web and API
  • Please explain how to assign roles to users

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Document roles and permissions owncloud/docs-ocis
2 participants
@mmattel @pmaier1