Uploaded image for project: 'Camunda Optimize'
  1. Camunda Optimize
  2. OPT-2276 Advanced Permissions for Entities
  3. OPT-2552

Collection role authorization

    XMLWordPrintable

Details

    • Sub-task
    • Resolution: Done
    • L3 - Default
    • 2.6.0
    • None
    • backend
    • None

    Description

      Context:
      After roles are assignable to collections with OPT-2545 their enforcement needs to be activated.

      AT:

      • users can only access collections they are authorized to by a role entry for their userId or a group they belong to
      • users can only edit a collection (update & delete) if they have the MANAGER role on the collection
      • users can only edit collection roles if they have the MANAGER role on the collection
      • users can only edit collection scopes if they have the MANAGER role on the collection
      • list endpoints (/collection & /entities) only include collections users are authorized to see based on their collection role
      • the API indicates the role of the current user on a collection

      mgm-controller-panel

        This is the controller panel for Smart Panels app

        Attachments

          Issue Links

            is depended on by

            Sub-task - The sub-task of the issue OPT-2627 Report/Dashboard Role Authorization

            • L3 - Default - Minor issue or issue with existing workaround, feature requests and questions
            • Done

            Activity

              People

                Unassigned Unassigned
                sebastian.bathke Sebastian Bathke
                Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved:

                  Salesforce