task #7089
Updated by Andreas Kohlbecker over 6 years ago
The workshop will be held in from 27.11 - 30.11.2017 **Topics:** * Do the current rights work correctly in TaxEditor & Vaadin * most important: editing of factual data with limited rights on feature (and taxon subtree) * Rights for long running tasks like repair mechanisms, cleanups and imports (e.g. pre-check if an import is allowed at all with the given rights) * Discuss the Create/Update/Delete issue where a user has rights to create, but not to update a record that he/she created. * Are there better solutions? How are others solve the problem? * Which use-cases do we have? * Solutions in existing systems * Are string based rights the best data structure or use a more structured class? (ticket exists) * Rights&Roles editor * Current state * Requirements * Is the original "View" concept maybe a better solution. This concept adds each CdmBase to a number of roles, so the rights are defined as data relationships between the role and the actual data. * This may make reading rights easier to implement * Critical: each insert (and maybe even update or delete) needs to update the rights relationships. * Reading rights * Requirements * How to implement in editors (sometimes read rights are required to get to a certain place where you have write rights, e.g. for editing factual data you need read rights for the taxon/specimen, and for standard use you even need read rights for the whole classification as the access is often via the taxon navigator. * Discuss: which tags to use in Redmine for rights&roles issues (see comment) * Do we need a technical label for terms * all open tickets with security tag * Do we need concatenated rights like "Subtree A and Feature A + tree B and Feature B, but not Tree A and Feature B" * Performance **Project specific requirements:** * World Flora Online * Löschen von Namen, die eine WFO ID haben, ist nur dem „Super-Admin“ möglich – oder nur nach sehr starker Warnung. * Red List 2020 * Editing of distributions that belong to a certain area * Additivity: * Editing of a working set * For a given working set edit the character matrix (content), this may include the possibility to add specimen / taxa. It also includes rights on all characters (=features) defined in the working set * FaunaEuropeae * management roles per taxonomic group (#4159) * Euro+Med * ??? # Use Cases * Facts Eingabe für ein Feature * Campanula * ... ## # CREATE Problem Beschreibung: User(s) do only have create rights on certain classes/entities but may want to update their own incorrect or incomplete data. This should be possible as long as no other "user" is using this new data. Concepts * Graph with locking directed edges * Staging area * ? --- Results of the workshop in [[WorkshopRightsAndRoles2017-11]]