Introduce new role Operator

mercedes-benz / sechub

SecHub provides a central API to test software with different security tools.

https://mercedes-benz.github.io/sechub/

MIT License

266 stars 65 forks source link

Introduce new role Operator #165

Open de-jcup opened 4 years ago

de-jcup commented 4 years ago

Situation

Currently we have only super administrator role for operation access. So everybody / every system needing to enable/disable some specific functions must have super admin rights.

This is not the right way - so we need a change here

Wanted

We need a new role OPERATOR having not same rights as administrators but can enable/disable specific sechub functions- e.g. Scheduling.

sven-dmlr commented 4 years ago

I could think of another role: Manager

create and remove users; accept user signups
create and remove projects
manage Projects (add/remove Users from projects; assign new owner)

So a self service portal would not need super-admin rights.

de-jcup commented 4 years ago

@sven-dmlr : The manager role sounds good but should not be able to unassign admin users from any project or delete them.