Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

complete authorization #28

Open
hohwille opened this issue Sep 3, 2019 · 0 comments
Open

complete authorization #28

hohwille opened this issue Sep 3, 2019 · 0 comments
Assignees
@hohwille
Labels
backend Java Backend (Server) enhancement New feature or request security security vulneratbilities (CVE)
Milestone
release:1.0.0

Comments

@hohwille
Copy link
Member

hohwille commented Sep 3, 2019

We have generic permission checks in place. However, KeyList.permission is an attribute that should allow to provide and configure a custom permission required to save (create/update) KeyEntry instances of that list.
This is not yet implemented. Also the app is missing a group for a regular Manager users who can not only read but also save changes.
@hohwille hohwille self-assigned this Sep 3, 2019
@hohwille hohwille added this to the release:1.0.0 milestone Sep 3, 2019
@hohwille hohwille added backend Java Backend (Server) enhancement New feature or request security security vulneratbilities (CVE) labels Sep 3, 2019
hohwille added a commit to hohwille/keywi that referenced this issue Sep 3, 2019
@hohwille
devonfw-forge#28: various improvements on authorization
2651134
@hohwille hohwille mentioned this issue Sep 3, 2019
Merged
hohwille added a commit that referenced this issue Sep 17, 2019
@hohwille
#28: various improvements on authorization (#29)
4183434
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hohwille hohwille

Labels
backend Java Backend (Server) enhancement New feature or request security security vulneratbilities (CVE)
Projects
None yet
Milestone
release:1.0.0
Development

No branches or pull requests
1 participant
@hohwille