validate policy role for user in a hierarchy

telefonicaid / fiware-pep-steelskin

Telefonica's implementation of the FIWARE PEP GE

GNU Affero General Public License v3.0

0 stars 0 forks source link

validate policy role for user in a hierarchy #414

Open AlvaroVega opened 5 years ago

AlvaroVega commented 5 years ago

Study about a custom mode for pep to validate a policy role on a subservice where an user does not have an role assignation but subservice matches with a hierarchy

AlvaroVega commented 5 years ago

Strategy: Iterate validation againts ServicePath suffixes until match it

i.e. ServicePath: /org/city/field Apply validation for:

                                       servicepath /org/city/field, 
                                       servicepath /org/city, 
                                       servicepath /org

AlvaroVega commented 5 years ago

For orion current FRN is created: fiware:orion:<service>:/<subservice>:::

AlvaroVega commented 5 years ago

Possible implementation: https://github.com/telefonicaid/fiware-pep-steelskin/blob/master/lib/services/validation.js#L167

Given a subservice composed by several '/', Iterate retrieveRequest from specific to generic