davidbairdala
commented
10 years ago date: Thu Jun 12 17:26:18 2014 author: david.ba...@gmail.com
(No comment was entered for this change.)
UPDATES: Labels: -Type-Defect Type-Enhancement
Closed davidbairdala closed 3 years ago
davidbairdala
commented
10 years ago date: Thu Jun 12 17:26:18 2014 author: david.ba...@gmail.com
(No comment was entered for this change.)
UPDATES: Labels: -Type-Defect Type-Enhancement
pbrenton
commented
6 years ago Related issue #11
cdausmus
commented
3 years ago Closing as duplicate of #11
migrated from: https://code.google.com/p/ala/issues/detail?id=696 date: Thu Jun 12 17:26:10 2014 author: david.ba...@gmail.com
With the creation of the Institution domain object, we should provide a new tier of permissions that allow institutions greater autonomy over managing their expeditions, whilst protecting other expeditions from accidental modification/deletion.
New (BVP application managed) roles 'Institution_Admin' and 'Institution_Validator' need to be created, which are always linked with an institution id. It is conceivable that some users will have multiple Institution_Admin and Institution_Validator roles, each with a different institution id.
Institution_Admins can:
Consider putting all permission checks in a service so that the rules can be easily codified: