figure out ingest roles / permissions check

OregonDigital / oregondigital_2

The active development on Oregon Digital 2 is in the https://github.com/OregonDigital/OD2 repo.

Other

1 stars 1 forks source link

figure out ingest roles / permissions check #263

Open jechols opened 9 years ago

jechols commented 9 years ago

First, who can ingest stuff / edit stuff / otherwise use the "records" controller?

Second, I think we need to override the hydra editor auth check:

load_and_authorize_resource only: [:new, :edit, :update, :create], instance_name: resource_instance_name

It doesn't protect the index in any way, and I'm not sure we want permissions based on the resource instance name - we are probably okay with a simpler check just on GenericAsset.

srabun commented 9 years ago

try use generic asset? enable rules on active fedora base.

tpendragon commented 9 years ago

Yes, update the auth check.

srabun commented 9 years ago

what we have in OD is good enough for roles. might re-visit as more people try to use it? they were made simple on purpose. leave all facet config at admin level.