Closed
Description
As a company, we want to bring in the scaffolding and basic for RBAC that will be needed to for the work in the Community MVP milestone work.
GET /roles/:userid
=> { site: []string, org: map<string>[]string }
GET /roles/assignable
=> { site: []string, org: map<string>[]string }
PUT /roles/:userid/:role_name
=> { site: []string, org: map<string>[]string }
PUT /roles/:orgid/:userid/:role_name
=> { site: []string, org: map<string>[]string }
DELETE /roles/:userid/:role_name
=> { site: []string, org: map<string>[]string }
DELETE /roles/:orgid/:userid/:role_name
=> { site: []string, org: map<string>[]string }
POST /can-i
{ name: { action, with_owner, in_org, with_object_id, of_resource_type }, ... }
{ name: true|false, ... }
- Implement tests for permissions #715
- Implement table tests with golden files for user roles #716
- Implement stub function to authenticate users in the Beta work #718
- Implement the 2 truth tables in OPA #719
- Build the struct for permission format for RBAC #720
- Implement the V1 user roles for RBAC #721
- Switch out the internal user auth function stub for the final version #725
- Support assigning and changing users roles in the UI #602
- Endpoint for listing user permissions #984
- Add permissions for links and pages #884
- Feel free to create/modify issues.
- Please add points and tag new issues with the epic they belong to
- Please let EM or PM know if there is a reason something should NOT be in this milestone/epic IF it changes the intent of the Community MVP delivery items in the Scoping doc so we can adjust accordingly or discuss