Skip to main content

Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

    •  
      story #9281 define FRS global permissions
    Actions
    Summary
    project admin
    define FRS global permissions

    I can better control who access my releases and have a consistent interface to manage the people who can write

    • Replace the current global FRS permission (Admin/None in "User permissions" matrix) by a service based definition of Read and Write (based on groups instead of users).
      • For WRITE (admins), during conversion a user group will be automatically created (probably re-use already placeholder file_manager_admins) for all existing projects to group all users that were "FRS admin".
      • For READ (consumers), during the conversion, we should take into account platform & project visibility. For instance in a public project all registererd users can access the FRS but in a private project it's only project_members. For "public incl. restricted", it's authenticated users by default.
    • In FRS admin, there is a new section to define permissions for Read & Write (as for mediawiki)
      • By default, Read is granted to project_members
      • Write is granted to
        • "frs_administrators" for existing projects
        • for new projects, the group defined in the template project (if any, otherwise project_admins)

    Special notes

    • A special attention should be taken to not break all the elements that rely on FRS
      • Soap & CLI
      • REST
      • Webdav
    • If relevant/possible during development, a dedicated table to store permissions should be used to avoid clutter the existing permissions table.
    By Benjamin Dauton (bdauton_enalean)
    (111 kB)
    1-frs-permissions.png
    By Benjamin Dauton (bdauton_enalean)
    (139 kB)
    2-frs-permissions-comments.png
    Juliana Leclaire (juliana), Marie Ange Garnier (marieange)
    Status
    Empty
    Done
    Development
    • [ ] Does it involves User Interface? 
    • [ ] Are there any mockups?
    • [ ] Are permissions checked?
    • [ ] Does it need Javascript development?
    • [ ] Does it need a forge upgrade bucket?
    • [ ] Does it need to execute things in system events?
    • [ ] Does it impact project creation (templates)?
    • [ ] Is it exploratory?
    Empty
    Details
    #9281
    Manuel Vacelet (vaceletm)
    2016-08-22 10:55
    2016-06-24 10:33
    4617

    References
    Artifact links
    Empty
    Referencing story #9281

    Artifact Tracker v5

    rel #9211 8.18
    request #9381 Release notes and changelog can not be accessed
    story #10063 homogenize service administration

    Git commit

    tuleap/tuleap/stable

    Do not add members to already existing FRS_Admin ugroups 96f18a62af
    User avatar Marie Ange Garnier (marieange) , 2016-08-11 16:39
    Warn admin that user perms matrix has changed 88617e79da
    User avatar Marie Ange Garnier (marieange) , 2016-08-11 17:22
    Create new section in FRS Admin bb398e9ea1
    User avatar Marie Ange Garnier (marieange) , 2016-08-03 11:41
    Read perm + forgeupgrade (site and project perm) + Update site and project at FRS level 03c64afbc6
    User avatar Marie Ange Garnier (marieange) , 2016-08-12 14:23
    Migrate old global FRS permissions 113c38452c
    User avatar Marie Ange Garnier (marieange) , 2016-08-09 11:03
    UI FRS to select who is Admin f3562eb04f
    User avatar Marie Ange Garnier (marieange) , 2016-08-10 11:32
    UI For Read permission dc3766cd60
    User avatar Juliana Leclaire (juliana) , 2016-08-10 14:52
    Update administration privilege ffd5954677
    User avatar Marie Ange Garnier (marieange) , 2016-08-12 14:41
    Enhance inline help in FRS administration Access control 1d68bf0c16
    User avatar Marie Ange Garnier (marieange) , 2016-08-16 11:13
    Redirect to edit-permissions once an update is done 4171075ef8
    User avatar Nicolas Terray (nterray) , 2016-08-16 11:17
    Highlight FRS Service entry in sidebar b55c815535
    User avatar Nicolas Terray (nterray) , 2016-08-16 14:40
    Do not display Administration in title when we are not in admin 799d5d210a
    User avatar Nicolas Terray (nterray) , 2016-08-16 15:15
    Remove old call to old FRS permission and replace it with new permissions e930abd916
    User avatar Marie Ange Garnier (marieange) , 2016-08-17 10:36
    Refactoring : Read and Write lists will be in includable mustache 8d0dc0bcaa
    User avatar Marie Ange Garnier (marieange) , 2016-08-22 11:02
    Refactoring of package and release 45cd35894f
    User avatar Marie Ange Garnier (marieange) , 2016-08-23 10:52
    Display settings

    Follow-ups

    User avatar
    Marie Ange Garnier (marieange)2016-08-19 08:57
    • Acceptance criteria
      Something went wrong, the follow up content couldn't be loaded
      Only formatting have been changed, you should switch to markup to see the changes
    User avatar
    Benjamin Dauton (bdauton_enalean)2016-07-11 11:45