noshutdown-ru / vault

Is a plugin for project management system Redmine. Allows you to store various passwords/keys in one place for the project.
https://noshutdown.ru/en/redmine-plugins-vault
46 stars 29 forks source link

Question - Access Control List #18

Closed drewlsvern closed 6 years ago

drewlsvern commented 6 years ago

I'm curious how the access control list rights work along with roles and permissions.

For instance, I may want all users of a specific group to be allowed to view some keys but not all. Currently I have a Developers group assigned to a project, and they have no permissions for keys, so they can't see the keys view at all. If I set the group's permission to be able to view keys, they see all keys in the project and the access control list doesn't seem to do anything.

Any help would be appreciated.

Current Server Config Redmine 3.4.4 Ruby 2.4.1 Rails 4.2.8 MS SQL Server 2017 Ubuntu 16.04 LTS

noshutdown-ru-user commented 6 years ago

You you want manage access by white list you need to do this: 1) Select for role Developers only Whitelist checkbox

1

2) In project put user in selected members

2

after this user will see only his key

3

better create 4 type of roles:

and assign needed role to user

drewlsvern commented 6 years ago

@noshutdown-ru-user Thanks for this, much appreciated.