How does an authenticated user create a media? #1091
Labels
Subject: Access Control
related to managing roles and permissions/information security.
Comments
Natkeeran
changed the title
|
@dannylamb Just bringing this to your attention. |
|
It would be nice if 'view media' showed the tab... That's certainly more appropriate than what's happening now, which is no restrictions whatsoever. Creating media in general is bound to the permissions much like content. So any of the permissions to do write operations for any media type (or the general 'all media') should still apply. And they can come from any role. The fcrepoadmin role doesn't really need anything. It's just slapped into the JWT if the user has that role, and that's what lets us write anything to Fedora. |
kstapelfeldt
added
Subject: Access Control
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
An authenticated user with fcrepoAdmin role is needed to sync a Repository Item (node) to Fedora. Giving "Repository Item: Create new content" permission enables the authenticated user to create the repository object. However, it not clear what permissions are needed to show the Media tab and let the user create media objects associated with that repository item.
The text was updated successfully, but these errors were encountered: