Update RBAC guide for plugin writers #2494
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
mdellweg
force-pushed
the
rbac_docs
branch
2 times, most recently
from
b2e2c5f to
b4e7aa1
Compare
bmbouter
reviewed
Apr 7, 2022
bmbouter
reviewed
Apr 7, 2022
bmbouter
reviewed
Apr 7, 2022
bmbouter
reviewed
Apr 7, 2022
|
This is all pretty good. What I really think would benefit this is a clear example, like one from pulp_file. If an example could be picked, e.g. FileRemote and then use that as the context to concretely talk about each thing I think it would do wonders to connect the abstract language (which is needed) to the concrete implementation of that (also needed). |
ipanova
reviewed
Apr 8, 2022
mdellweg
force-pushed
the
rbac_docs
branch
3 times, most recently
from
0476796 to
c234341
Compare
bmbouter
reviewed
Apr 8, 2022
bmbouter
reviewed
Apr 8, 2022
bmbouter
reviewed
Apr 8, 2022
mdellweg
changed the title
bmbouter
reviewed
Apr 12, 2022
bmbouter
reviewed
Apr 12, 2022
bmbouter
reviewed
Apr 12, 2022
|
|
||
| DRF_ACCESS_POLICY = {"reusable_conditions": "pulpcore.app.global_access_conditions"} | ||
| :Model-Level: A role is associated to a user or group for access to a specific model, but not an | ||
| instance of that model. This allows you to express concepts like "Hilde can administer all |
There was a problem hiding this comment.
Nice use of Hilde as a specific user persona.
bmbouter
approved these changes
Apr 12, 2022
ipanova
reviewed
Apr 12, 2022
gerrod3
reviewed
Apr 12, 2022
gerrod3
reviewed
Apr 12, 2022
gerrod3
reviewed
Apr 12, 2022
Explain the concept of roles, their relationship to permissions, how they are associated with personas and objects and also remove any mention of django-guardian that is to be removed in 3.20. fixes pulp#2463 Co-authored-by: Ina Panova <ipanova@redhat.com> Co-authored-by: bmbouter <bmbouter@gmail.com> Co-authored-by: Gerrod <gerrodubben@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Explain the concept of roles, their relationship to permissions, how
they are associated with personas and objects and also remove any
mention of django-guardian that is to be removed in 3.20.
fixes #2463