directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Florin Stingaciu (JIRA)" <>
Subject [jira] [Created] (FC-144) Ability to assign groups to roles
Date Fri, 29 Jan 2016 22:28:39 GMT
Florin Stingaciu created FC-144:

             Summary: Ability to assign groups to roles
                 Key: FC-144
             Project: FORTRESS
          Issue Type: Improvement
    Affects Versions: 1.0.0-RC40
            Reporter: Florin Stingaciu

We are currently working on performing an integration between Openstack Keystone and Fortress
Core. We will use Fortress as the authorization backend for the rest of Openstack. We have
managed to map most of the current functionality in Openstack within the Fortress schema except
for the ability to assign roles to a group. 

I've spoken with [~smckinney], and he determined this improvement is a feasible addition to
Fortress's feature set. After a number of back and forths, we have come up with the following
requirements as API additions:

* Session createSession (Group group, boolean isTrusted);
* void assignGroup ( Group group, Role role );
* List<Group> roleGroups ( Role role );
* List<Role> groupRoles ( Group group );
* the ability to use the above session with checkAccess(Session session, Permission perm)

We also discussed temporal constrains for group to role assignment. Temporal constrains will
not be utilized as this functionality has not been defined in Openstack.  

This message was sent by Atlassian JIRA

View raw message