From 9f7bd8e624172674af745b400b225a85b2f08436 Mon Sep 17 00:00:00 2001 From: richard Date: Sun, 14 Jul 2002 23:16:52 +0000 Subject: [PATCH] Some refinements git-svn-id: http://svn.roundup-tracker.org/svnroot/roundup/trunk@877 57a73879-2fb5-44c3-a270-3262357dd7e2 --- doc/security.txt | 24 ++++++++++++++++++------ 1 file changed, 18 insertions(+), 6 deletions(-) diff --git a/doc/security.txt b/doc/security.txt index 2d6906e..12aadd2 100644 --- a/doc/security.txt +++ b/doc/security.txt @@ -2,7 +2,7 @@ Security Mechanisms =================== -:Version: $Revision: 1.5 $ +:Version: $Revision: 1.6 $ Current situation ================= @@ -192,14 +192,14 @@ The instance dbinit module then has:: description="User may log in through email") mr = perm.create(name="Mail Registration", description="User may register through email") - aa = perm.create(name="Access Everything", + ae = perm.create(name="Access Everything", description="User may access everthing") role.create(name="User", description="A regular user, no privs", permissions=[wa, wr, ma, mr]) role.create(name="Admin", description="An admin user, full privs", - permissions=[aa]) - ro = role.create(name="No Rego", description="A user who can't register", - permissions=[wa, ma]) + permissions=[ae]) + role.create(name="No Rego", description="A user who can't register", + permissions=[wa, ma]) in init(): @@ -212,6 +212,9 @@ The instance dbinit module then has:: r = db.getclass('role').lookup('User') user.create(username="anonymous", roles=[r]) +Then in the code that matters, calls to ``hasPermission`` are made to +determine if the user has permission to perform some action. + Authentication of Users ----------------------- @@ -236,12 +239,21 @@ The CGI interface must be changed to: real credentials (username/password) around for each request (this means sessions and hence a session database) - use the new logical control mechanisms + - implement the permission module + - implement a Role editing interface for users + - implement htmltemplate tests on permissions + - switch all code over from using config vars for permission checks to using + permissions + - include config vars for initial Roles for anonymous web, new web and new + email users The mail gateway must be changed to: - use digital signatures - use the new logical control mechanisms - + - switch all code over from using config vars for permission checks to using + permissions + The command-line tool must be changed to: - use the new logical control mechanisms (only allowing write -- 2.30.2