Add a more complex user management with groups and roles

Valbou / vtaskr-backend

An open-source to do list application for personnal use

GNU General Public License v3.0

5 stars 0 forks source link

Add a more complex user management with groups and roles #11

Closed Valbou closed 1 year ago

Valbou commented 1 year ago

Add possibility to create a group of users. Add possibility to assign roles to users in a group (CRUD -> CRUD/CRU/RU/R).

Add a group optional foreign key on tasks and tags

A user can interact with tasks or tags associated to his group or if he's the owner/creator.

Valbou commented 1 year ago

RBAC management seems to be a good and scalable solution. Defined and custom roles must be possible (for advanced users/needs). Remove group or user ownership from tasks module and use a tenant id that correspond to group_id. Attempt to add more isolation between modules. Add an optional module to use Keycloak as IAM rather than users module.

Valbou commented 1 year ago

Need a new PR to add endpoints for RBAC management.