Skip to content

Commit

Permalink
fixed type and added mapping between authorization and data conditions
Browse files Browse the repository at this point in the history
  • Loading branch information
nitrosx committed Nov 2, 2023
1 parent 3212504 commit 5500084
Showing 1 changed file with 16 additions and 1 deletion.
17 changes: 16 additions & 1 deletion Development/v4.x/backend/authorization/authorization_datasets.md
Original file line number Diff line number Diff line change
Expand Up @@ -66,6 +66,21 @@ This is the list of the permissions methods available for datasets and all their
- DatasetLogbookReadOwner
- DatasetLogbookReadAny

### Implementation
How the different level of authorization translates in data condition applied byt he backend.
- _*_ Public
- isPublished = true
- _*_ Access (condition ar applied in logical _or_)
- isPublished = true
- ownerGroup is one of the groups that the user belongs
- accessGroups are one of the groups that the user belongs
- sharedWith contains the user's email
- _*_ Owner
- ownerGroup is one of the groups that the user belongs
- _*_ Any
- User can perform the action to any dataset


### Priority
```mermaid
%%{init: {'theme' : 'base', 'themeVariables': { 'fontSize': '11px', 'fontFamily' : 'monospace'}}}%%
Expand All @@ -84,7 +99,7 @@ graph LR;
DatasetUpdate-->DatasetUpdateOwner;
DatasetUpdateOwner-->DatasetUpdateAny;
DatasetDelete-->DatasetDeleteOwner;
DatasetDeleteOwner-->DatasetDelteAny;
DatasetDeleteOwner-->DatasetDeleteAny;
```

### Authorization table
Expand Down

0 comments on commit 5500084

Please sign in to comment.