Project

Profile

Help

Story #7336

closed

Story #7338: [Epic] As a user, I have pulpcore enforcing Role Based Access Control

As a user, I can use django-admin to manage object-level permissions and read data from other models

Added by bmbouter over 4 years ago. Updated almost 3 years ago.

Status:
CLOSED - DUPLICATE
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:

100%

Estimated time:
(Total: 0:00 h)
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:

Description

Ticket moved to GitHub: "pulp/pulpcore/1923":https://github.com/pulp/pulpcore/issues/1923


Background

  • Administrators and developers have expressed desire to read Pulp data using django-admin.
  • Additionally, RBAC features of Pulp need an easy way for users to view/manage object-level permissions for Pulp data and django-admin provides that.

Solution

3.6 Already enabled django-admin at /admin/ so now we need to expand the models that are available there. Specifically we need to:

  • Add all the pulpcore objects
  • Ensure each does not allow data to be added or modified, only read
  • Ensure each object that meaningfully uses object-level permissions inherits from or uses GuardedModelAdmin from django-guardian.

Sub-issues 1 (0 open1 closed)

Ansible Plugin - Story #7633: As a user, I can use django-admin to manage object-level permissions and read data from other modelsCLOSED - DUPLICATE

Actions

Also available in: Atom PDF