Managing users

[cybersiddhu]

This is generally a broad task and more or less starts with curator assignments for annotation and then in general any user that wants to add or edit content to our database.

Initial plan

• It is decided from our group discussion that instead of our custom setup we will use well established third party such as google, twitter, facebook based federated user management.
• The third party system will provide(oauth based) access or authentication whereas we will decide on level of authorization or which user can access which resource.

The implementation have to implemented in few pieces

Backend

• The database schema will provide a single entity for all the usernames from the third party providers.
• A series of linking tables which will connect chado(containing the data) to the user to provide the user assignments.

Middleware

• A server side component that will help in managing access through third party provider. It should provide an uniform interface for various third party systems.
• This component will use JWT for managing authentication status.
• It is expected to implemented using golang. A standard oauth library will be used for this purpose.

Frontend

• Every web application that modifies database content should use the middleware for managing user authorization and authentication.

[cybersiddhu]

Additional work

For managing stock center orders, every user(colleague) has to be migrated to our new system. It involves developing an one time application that will allow users to map their existing email(colleague entry) to their third party account.

[cybersiddhu]

#31