search

aquametalabs / aquameta

Web development platform built entirely in PostgreSQL
GNU General Public License v3.0
1.1k stars 52 forks source link

hub: security scheme #170

Open erichanson opened 5 years ago

erichanson commented 5 years ago

Need policy that is hub-specific for who can push, pull, and clone repositories. Something like:

  1. Install pulls bundles that start with org.aquameta.core. (We'd need to rename some things)
  2. Anonymous users can pull any bundle marked as public (whatever that means)
  3. Registered users can push bundles up, they are initially private
  4. Registered users can push commits to others' bundles?