Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement conditional access to drawings for Admins and other role-specific business rules #149

Closed
krissy opened this issue Feb 27, 2017 · 1 comment
Closed

Implement conditional access to drawings for Admins and other role-specific business rules #149

krissy opened this issue Feb 27, 2017 · 1 comment
Assignees
@krissy
Labels
backend high priority Ruby/Rails

Comments

@krissy
Copy link
Member

krissy commented Feb 27, 2017

What

Following the work to set up user roles in #135, we want to ensure that general Admins only have access to drawings uploaded within their organisation, and any additional conditional business rules outlined here for all roles: https://github.com/empowerhack/DrawMyLife-Service/wiki/2.1-Org-structure-and-roles. Currently, Admins have access to all drawings, no matter who uploaded them.

This is a priority now that we have users from multiple organisations.
krissy added a commit that referenced this issue Mar 5, 2017
@krissy
[#149] Restrict non-super_admin users to viewing and editing drawings…
d5ac701 
… only in their own organisation.
krissy added a commit that referenced this issue Mar 5, 2017
@krissy
[#149] Restrict non-super_admin users to viewing and editing drawings…
b736cb4 
… only in their own organisation.
krissy added a commit that referenced this issue Mar 6, 2017
@krissy
[#149] Restrict access to Organisations page to Super Admins
2a3e19d
@krissy krissy mentioned this issue Mar 6, 2017
Merged
7 tasks
@krissy krissy self-assigned this Mar 6, 2017
krissy added a commit that referenced this issue Mar 9, 2017
@krissy
[#149] Ensure helper auth method is private
0104875
krissy added a commit that referenced this issue Mar 9, 2017
@krissy
Merge pull request #153 from empowerhack/149/restrict-non-super-admin…
9b77094 
…s-to-org

[#149] Restrict access to drawings and organisations
@krissy
Copy link
Member Author

krissy commented Mar 11, 2017

Completed in #153

@krissy krissy closed this as completed Mar 11, 2017
kevinpmcc pushed a commit that referenced this issue Apr 2, 2017
@krissy
[#149] Restrict non-super_admin users to viewing and editing drawings…
32aca84 
… only in their own organisation.
kevinpmcc pushed a commit that referenced this issue Apr 2, 2017
@krissy
[#149] Restrict access to Organisations page to Super Admins
39aca4d
kevinpmcc pushed a commit that referenced this issue Apr 2, 2017
@krissy
[#149] Ensure helper auth method is private
0b55cf5
kevinpmcc pushed a commit that referenced this issue Apr 2, 2017
@krissy
Merge pull request #153 from empowerhack/149/restrict-non-super-admin…
21b7631 
…s-to-org

[#149] Restrict access to drawings and organisations
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@krissy krissy

Labels
backend high priority Ruby/Rails
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@krissy @CathMollie