hammer
commented
9 years ago Oh boy, delegation. I don't want to go too crazy with the account system yet so let's try to build utility around user accounts before building administrator accounts?
Open ihodes opened 9 years ago
hammer
commented
9 years ago Oh boy, delegation. I don't want to go too crazy with the account system yet so let's try to build utility around user accounts before building administrator accounts?
ihodes
commented
9 years ago I think we need this before we can do https://github.com/hammerlab/cycledash/issues/770 —we don't want to assign resources to particular users, so we need to to assign resources to groups (unless we want something more granular than that). To handle groups + admin, we'll only need a groups table and a user_groups join table with an is_admin flag. We can get fancier later, but I think this gets us most of the way to where we want to be.
ihodes
commented
9 years ago I'm mistaken; we don't need email verification for this (lost my context). We do need groups.
Should have a secure registration system; right now anyone can register for an account.
Should we implement groups + group owners to handle this? Group owners or admins could authorize users.