consider pre-defined ACLs for common user types

infamousjoeg / cybr-cli

A "Swiss Army Knife" command-line interface (CLI) for easy human and non-human interaction with @CyberArk suite of products.

Apache License 2.0

72 stars 16 forks source link

consider pre-defined ACLs for common user types #87

Closed jodyhuntatx closed 2 years ago

jodyhuntatx commented 3 years ago

As an impatient workflow developer I don't want to look at documentation or PVWA to remember what permissions to give common user types on a safe. Having pre-defined ACLs for users like Admins, Auditors, LOB users, etc. would ensure consistency and less chance of overprivilege.

infamousjoeg commented 2 years ago

@jodyhuntatx This is currently being worked on in the fix-87-predefined-safe-acl branch. Were there any particular roles you were looking to have pre-defined or are you just hoping for commonly used recommendations?

infamousjoeg commented 2 years ago

Here is where roles are being defined: https://github.com/infamousjoeg/cybr-cli/blob/fix-87-predefined-safe-acl/pkg/cybr/api/roles.go