Project

Profile

Help

Story #7336

Story #7338: [Epic] As a user, I have pulpcore enforcing Role Based Access Control

As a user, I can use django-admin to manage object-level permissions and read data from other models

Added by bmbouter 12 months ago. Updated 12 months ago.

Status:
NEW
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:

0%

Estimated time:
(Total: 0:00 h)
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:

Description

Background

  • Administrators and developers have expressed desire to read Pulp data using django-admin.
  • Additionally, RBAC features of Pulp need an easy way for users to view/manage object-level permissions for Pulp data and django-admin provides that.

Solution

3.6 Already enabled django-admin at /admin/ so now we need to expand the models that are available there. Specifically we need to:

  • Add all the pulpcore objects
  • Ensure each does not allow data to be added or modified, only read
  • Ensure each object that meaningfully uses object-level permissions inherits from or uses GuardedModelAdmin from django-guardian.

Subtasks

Ansible Plugin - Story #7633: As a user, I can use django-admin to manage object-level permissions and read data from other modelsNEW

Actions

History

#1 Updated by bmbouter 12 months ago

  • Parent task set to #7338

Please register to edit this issue

Also available in: Atom PDF