Give an organization access to a member's resource

TransparentHealth / smh_app

Share My Health App: An application for Community Members and Community Based Organizations

Apache License 2.0

2 stars 3 forks source link

Give an organization access to a member's resource #13

Closed whytheplatypus closed 5 years ago

whytheplatypus commented 5 years ago

A member who own's a resource (e.g. oauth token) should be able to give authorization to an organization to use that resource.

Model:

{
   organization   foreign key
   user           foreign key
   resource       foreign key?
}

whytheplatypus commented 5 years ago

The model could be called a Grant.

Also the resource might make more sense as a string, a namespaced reference to the type of resource being granted access to. Validation would be possible against something like registered resources (think registered backends in django social oauth or similar)

aviars commented 5 years ago

'Grant' has meaning in OAuth

whytheplatypus commented 5 years ago

That inspired the idea: A Grant of access. An AccessGrant or ResourceGrant could both be more clear.

aviars commented 5 years ago

This is complete.

aviars commented 5 years ago

Done.