Open muhammedabdelkader opened 9 months ago
COntrols on system 1- Tanent has an owner. 2- each tanent contains at least group 3- each group contains at least a user 4- there is no user without group 5- resource will have one owner 6- the permission will be handled from the permission table
the user permission will be the union of group permission and his permission
All implementation for this issue will use the branch 5-rbac-role-based-access-control
Regard to permissions, roles, secrets, tenants, users, and vaults. Below is a simple conceptual representation:
Vault:
Role:
Permission:
Examples: read, write, delete.
User:
Group:
Tenant:
Secret:
Here's a textual representation to illustrate relationships:
Vault:
Roles:
Permissions:
Users:
Groups:
Tenants:
Users, Roles, Permissions scoped within a Tenant
Secrets: