Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

WIP: app/permissions: Move permissions data out of LDAP #1917

Draft
wants to merge 1 commit into
base: dev
Choose a base branch
from

Conversation

alexAubin
Copy link
Member

The problem

As foretold a while ago, for various reason, we are going to want to tweak the permission datastructure (because of the auth header policy evolution, or being able to tweak the label, description, logo in the portal) and all the infos are currently in LDAP for not real reason beyond the fact that this is where we store the user<->group<->ACL relationships - but all the other infos (label, url, show_tile etc.) are only meant to be used by ssowat without relying on LDAP.

This is not practical because everytime we want to change the datastructure, we need an LDAP migration, and having everything in settings would also to just simply be able to edit a flat yaml text file which has plenty of benefits.

Solution

Move the url, additional_urls, label, show_tile, and protected infos out of LDAP

PR Status

Yolodraft

How to test

...

@alexAubin alexAubin changed the base branch from dev to bookworm July 21, 2024 18:05
@alexAubin alexAubin force-pushed the move-perm-data-out-of-ldap branch 3 times, most recently from 30015ca to ab7a33b Compare July 22, 2024 15:11
@alexAubin alexAubin force-pushed the move-perm-data-out-of-ldap branch 3 times, most recently from 6ac59cc to c5580a0 Compare August 5, 2024 18:42
Base automatically changed from bookworm to dev October 31, 2024 20:12
@alexAubin alexAubin force-pushed the move-perm-data-out-of-ldap branch from c5580a0 to 9340666 Compare November 6, 2024 18:08
@alexAubin alexAubin force-pushed the move-perm-data-out-of-ldap branch 5 times, most recently from 0175053 to b31c49d Compare December 1, 2024 01:37
@alexAubin alexAubin force-pushed the move-perm-data-out-of-ldap branch from 2b651cf to 6896dc8 Compare December 13, 2024 16:59
Comment on lines +30 to +31
for app, permissions in permissions_per_app.items():
app_setting(app, "_permissions", permissions)
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fixme: it doesn't properly migrate the "label" info ?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant