| From: | Aditya Toshniwal <aditya(dot)toshniwal(at)enterprisedb(dot)com> |
|---|---|
| To: | pgadmin-hackers <pgadmin-hackers(at)postgresql(dot)org> |
| Subject: | Role based access control discussion |
| Date: | 2025-03-13 06:16:08 |
| Message-ID: | CAM9w-_n9sUD1i_qzfowp5=CS0voUnmcGX-UeK8pZ5k3+xuHtLQ@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgadmin-hackers |
Hi Hackers,
I have started looking into a feature where users have requested for custom
roles. The roles can then be assigned permissions. Here's what I think how
it can be done:
1. Create a framework for roles based access control.
2. Allow adding/editing/deleting roles from UI.
3. User management dialog can be converted to a tab to get extra space
for other stuff.
4. pgAdmin can have some predefined permissions. The permissions can
then be used to validate at the API levels and UI.
5. New permissions cannot be added from UI as it will require code
changes. They can be added based on user requests.
6. Admin can allow these permissions to the roles and roles can be
assigned to users.
7. Permissions will be used to
8. Admin role remains static with no changes allowed.
Let me know your thoughts on this. If everything looks good then I will
proceed.
--
Thanks,
Aditya Toshniwal
pgAdmin Hacker | Sr. Staff SDE II | *enterprisedb.com*
<https://www.enterprisedb.com/>
"Don't Complain about Heat, Plant a TREE"
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Dave Page | 2025-03-13 10:06:06 | Re: Role based access control discussion |
| Previous Message | Yogesh Mahajan | 2025-03-11 08:31:21 | Re: Regarding feature #3319 |