[jira] [Updated] (SYNCOPE-225) Role owner

Thu, 25 Oct 2012 01:22:17 -0700 

     [ 
https://issues.apache.org/jira/browse/SYNCOPE-225?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Francesco Chicchiriccò updated SYNCOPE-225:
-------------------------------------------

    Description: 
Add the notion of (optional and inheritable) role owner, a SyncopeUser with 
rights to manage a role.

Role owner will be:

 1. the only one - besides admin - allowed to make modifications (update / 
delete) on the owned role and on all descendants with inheritOwner = true

 2. assigned the role operational entitlement (see [1]) of the owned role (and 
of all descendants with inheritOwner = true) to be adherent with the current 
authorization mechanism 

[1] 
https://cwiki.apache.org/confluence/display/SYNCOPE/Authentication+and+authorization

  was:
Add the notion of (optional) role owner, a SyncopeUser with rights to manage a 
role.

Role owner will have ROLE_ENT_* 'fake' entitlement (see [1]) automatically 
assigned.

Role ownership will be part of (optional) inheritance mechanism.

[1] 
https://cwiki.apache.org/confluence/display/SYNCOPE/Authentication+and+authorization


    
> Role owner
> ----------
>
>                 Key: SYNCOPE-225
>                 URL: https://issues.apache.org/jira/browse/SYNCOPE-225
>             Project: Syncope
>          Issue Type: Improvement
>            Reporter: Francesco Chicchiriccò
>            Assignee: Francesco Chicchiriccò
>             Fix For: 1.1.0-incubating
>
>
> Add the notion of (optional and inheritable) role owner, a SyncopeUser with 
> rights to manage a role.
> Role owner will be:
>  1. the only one - besides admin - allowed to make modifications (update / 
> delete) on the owned role and on all descendants with inheritOwner = true
>  2. assigned the role operational entitlement (see [1]) of the owned role 
> (and of all descendants with inheritOwner = true) to be adherent with the 
> current authorization mechanism 
> [1] 
> https://cwiki.apache.org/confluence/display/SYNCOPE/Authentication+and+authorization

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to