rbac first list

This commit is contained in:
ycc 2024-10-03 17:41:02 +02:00
parent d03ae0a42a
commit e846c38719
2 changed files with 106 additions and 43 deletions

63
docs/rbac.md Normal file
View File

@ -0,0 +1,63 @@
# Actions for people from my DC
## Search
- Allow internal
- Allow distributed
## Workspace
- Allow share
## Workflow editor
- Allow edit
- Allow book
- Allow send
- Allow share
# Resources
- Allow view/read/write
# Peer
- Allow requesting partnership
- Allow accepting unknown
# User
- Allow adding
- Allow editing
- Allow editing myself
# Actions for people from other DC
## Search
- Allow search
## Workspace
- Allow share with me
## Workflow
- Allow book
- Allow send
- Allow share with me (implied by Workspace)
# Resources
- Allow view
- Price depending on Peer/User/(project=>Collaborative Area) ?
# Peer
- Allow requesting partnership
# User
- Allow checking credentials
- Allow getting profile

View File

@ -1,46 +1,46 @@
@startmindmap @startmindmap
* OC for DTF - OC for DTF
** colors -- colors
***[#yellow] iteration 1 in progress ---[#yellow] iteration 1 in progress
***[#lightyellow] (OK) iteration 1 task finished ---[#lightyellow] (OK) iteration 1 task finished
*** planned to be developped, might be (OK) if schedule allows it --- planned to be developped, might be (OK) if schedule allows it
***[#lightblue] not in DTF scope yet ---[#lightblue] not in DTF scope yet
***[#orange] iteration 2 ---[#orange] iteration 2
***[#lightgreen] Thales proposed scopes ---[#lightgreen] Thales proposed scopes
** OC-Catalog -- OC-Catalog
***[#orange] authentication => RBAC ---[#orange] authentication => RBAC
***[#orange] algo metadata ingress, res min max) ---[#orange] algo metadata ingress, res min max)
*** (OK) new resource type : workflow --- (OK) new resource type : workflow
***[#lightyellow] (OK) split catalog - workspace - workflow ---[#lightyellow] (OK) split catalog - workspace - workflow
***[#lightblue] algo metadata input output description ---[#lightblue] algo metadata input output description
***[#lightblue] algo input/output rules ---[#lightblue] algo input/output rules
*** admin interface for catalog admin, roles definition --- admin interface for catalog admin, roles definition
***[#lightgreen] catalog indexing and search ---[#lightgreen] catalog indexing and search
** OC-Scheduler / OC-Monitor ? -- OC-Scheduler / OC-Monitor ?
***[#lightyellow] (OK) automatically starting workflows ---[#lightyellow] (OK) automatically starting workflows
*** (OK) monitoring workflows --- (OK) monitoring workflows
***[#orange] workflow to service generation (deployment yaml) ---[#orange] workflow to service generation (deployment yaml)
*** workflow to other targets (slurm) --- workflow to other targets (slurm)
** OC-Search => Front ++ OC-Search => Front
***[#lightblue] algo input/output description +++[#lightblue] algo input/output description
***[#lightblue] algo input/output rules check +++[#lightblue] algo input/output rules check
***[#lightyellow] (OK) refactor ui in flutter +++[#lightyellow] (OK) refactor ui in flutter
*** (OK) New resource type : workflow +++ (OK) New resource type : workflow
*** Algo metadata (ingress, res min max) +++ Algo metadata (ingress, res min max)
*** (OK) workflows monitoring +++ (OK) workflows monitoring
*** (OK) Schedule view +++ (OK) Schedule view
*** Datacenter view +++ Datacenter view
**[#lightblue] OC-Identity : Distributed OpenID+ server ++[#lightblue] OC-Identity : Distributed OpenID+ server
***[#yellow] Evaluate OpenId codebases +++[#yellow] Evaluate OpenId codebases
*** Implement OpenCloud extension +++ Implement OpenCloud extension
**[#lightgreen] OC-Deploy ++[#lightgreen] OC-Deploy
***[#lightyellow] (OK) repo +++[#lightyellow] (OK) repo
***[#yellow] deploy OC services +++[#yellow] deploy OC services
***[#orange] deploy demo instance +++[#orange] deploy demo instance
*** manage local cluster +++ manage local cluster
*** partner sandboxing +++ partner sandboxing
***[#lightblue] network sandboxing +++[#lightblue] network sandboxing
***[#lightblue] network output cheks +++[#lightblue] network output cheks
**[#lightgreen] OC-Datacenter ++[#lightgreen] OC-Datacenter
@endmindmap @endmindmap