From e846c38719fd416f2867b22b4b18ab99d5835a25 Mon Sep 17 00:00:00 2001 From: ycc Date: Thu, 3 Oct 2024 17:41:02 +0200 Subject: [PATCH] rbac first list --- docs/rbac.md | 63 ++++++++++++++++++++++++++++++++++++++ wbs/wbs.puml | 86 ++++++++++++++++++++++++++-------------------------- 2 files changed, 106 insertions(+), 43 deletions(-) create mode 100644 docs/rbac.md diff --git a/docs/rbac.md b/docs/rbac.md new file mode 100644 index 0000000..b857ab5 --- /dev/null +++ b/docs/rbac.md @@ -0,0 +1,63 @@ + +# Actions for people from my DC + +## Search + + - Allow internal + - Allow distributed + +## Workspace + + - Allow share + +## Workflow editor + + - Allow edit + - Allow book + - Allow send + - Allow share + +# Resources + + - Allow view/read/write + +# Peer + + - Allow requesting partnership + - Allow accepting unknown + +# User + + - Allow adding + - Allow editing + - Allow editing myself + +# Actions for people from other DC + +## Search + + - Allow search + +## Workspace + + - Allow share with me + +## Workflow + + - Allow book + - Allow send + - Allow share with me (implied by Workspace) + +# Resources + + - Allow view + - Price depending on Peer/User/(project=>Collaborative Area) ? + +# Peer + + - Allow requesting partnership + +# User + + - Allow checking credentials + - Allow getting profile diff --git a/wbs/wbs.puml b/wbs/wbs.puml index f0d2a1f..c85f91c 100644 --- a/wbs/wbs.puml +++ b/wbs/wbs.puml @@ -1,46 +1,46 @@ @startmindmap -* OC for DTF -** colors -***[#yellow] iteration 1 in progress -***[#lightyellow] (OK) iteration 1 task finished -*** planned to be developped, might be (OK) if schedule allows it -***[#lightblue] not in DTF scope yet -***[#orange] iteration 2 -***[#lightgreen] Thales proposed scopes -** OC-Catalog -***[#orange] authentication => RBAC -***[#orange] algo metadata ingress, res min max) -*** (OK) new resource type : workflow -***[#lightyellow] (OK) split catalog - workspace - workflow -***[#lightblue] algo metadata input output description -***[#lightblue] algo input/output rules -*** admin interface for catalog admin, roles definition -***[#lightgreen] catalog indexing and search -** OC-Scheduler / OC-Monitor ? -***[#lightyellow] (OK) automatically starting workflows -*** (OK) monitoring workflows -***[#orange] workflow to service generation (deployment yaml) -*** workflow to other targets (slurm) -** OC-Search => Front -***[#lightblue] algo input/output description -***[#lightblue] algo input/output rules check -***[#lightyellow] (OK) refactor ui in flutter -*** (OK) New resource type : workflow -*** Algo metadata (ingress, res min max) -*** (OK) workflows monitoring -*** (OK) Schedule view -*** Datacenter view -**[#lightblue] OC-Identity : Distributed OpenID+ server -***[#yellow] Evaluate OpenId codebases -*** Implement OpenCloud extension -**[#lightgreen] OC-Deploy -***[#lightyellow] (OK) repo -***[#yellow] deploy OC services -***[#orange] deploy demo instance -*** manage local cluster -*** partner sandboxing -***[#lightblue] network sandboxing -***[#lightblue] network output cheks -**[#lightgreen] OC-Datacenter +- OC for DTF +-- colors +---[#yellow] iteration 1 in progress +---[#lightyellow] (OK) iteration 1 task finished +--- planned to be developped, might be (OK) if schedule allows it +---[#lightblue] not in DTF scope yet +---[#orange] iteration 2 +---[#lightgreen] Thales proposed scopes +-- OC-Catalog +---[#orange] authentication => RBAC +---[#orange] algo metadata ingress, res min max) +--- (OK) new resource type : workflow +---[#lightyellow] (OK) split catalog - workspace - workflow +---[#lightblue] algo metadata input output description +---[#lightblue] algo input/output rules +--- admin interface for catalog admin, roles definition +---[#lightgreen] catalog indexing and search +-- OC-Scheduler / OC-Monitor ? +---[#lightyellow] (OK) automatically starting workflows +--- (OK) monitoring workflows +---[#orange] workflow to service generation (deployment yaml) +--- workflow to other targets (slurm) +++ OC-Search => Front ++++[#lightblue] algo input/output description ++++[#lightblue] algo input/output rules check ++++[#lightyellow] (OK) refactor ui in flutter ++++ (OK) New resource type : workflow ++++ Algo metadata (ingress, res min max) ++++ (OK) workflows monitoring ++++ (OK) Schedule view ++++ Datacenter view +++[#lightblue] OC-Identity : Distributed OpenID+ server ++++[#yellow] Evaluate OpenId codebases ++++ Implement OpenCloud extension +++[#lightgreen] OC-Deploy ++++[#lightyellow] (OK) repo ++++[#yellow] deploy OC services ++++[#orange] deploy demo instance ++++ manage local cluster ++++ partner sandboxing ++++[#lightblue] network sandboxing ++++[#lightblue] network output cheks +++[#lightgreen] OC-Datacenter @endmindmap \ No newline at end of file