http://localhost/ticket/2878 <p> As part of merging Organisations into core, it is necessary that we clarify the capacity field with which the users/datasets are added as members to the group 'subclass'. </p> <p> Rather than the capacity being an opaque string that implies auth but doesn't clearly specify it, we will use role names where roles are defined in the database - with a clearly defined set of standard roles. The Role table is expected to have simply a string name/representation and acts as a container for permissions. </p> <p> Each permission is a string of the form object.action (such as package.add, group.delete) of which several are expected to be associated with a role. This means the permission table will contain a string and a reference to the role. </p> <p> This work will require UI changes to the screens allowing users to be added to a group/organisation so that the list of available roles is available to add those users. </p> <p> [ ] Model for Role and Permission </p> <p> [ ] Logic layer changes for managing roles/permissions etc. </p> <p> [ ] Determine default roles, perhaps just admin/editor/viewer </p> <p> [ ] Fix the auth layer to use the permissions/roles - may be better implemented as another ticket. </p> en-us http://assets.okfn.org/p/ckan/img/ckan_logo_shortname.png http://localhost/ticket/2878 Trac 0.12.3 ross Wed, 22 Aug 2012 10:01:41 GMT http://localhost/ticket/2878#comment:1 http://localhost/ticket/2878#comment:1 <ul> <li><strong>description</strong> modified (<a href="/ticket/2878?action=diff&amp;version=1">diff</a>) </li> </ul> Ticket ross Wed, 22 Aug 2012 12:41:57 GMT http://localhost/ticket/2878#comment:2 http://localhost/ticket/2878#comment:2 <ul> <li><strong>description</strong> modified (<a href="/ticket/2878?action=diff&amp;version=2">diff</a>) </li> </ul> Ticket seanh Thu, 18 Oct 2012 11:42:01 GMT http://localhost/ticket/2878#comment:3 http://localhost/ticket/2878#comment:3 <ul> <li><strong>keywords</strong> <em>organizations</em> added </li> </ul> Ticket seanh Thu, 18 Oct 2012 12:05:06 GMT http://localhost/ticket/2878#comment:4 http://localhost/ticket/2878#comment:4 <ul> <li><strong>status</strong> changed from <em>new</em> to <em>closed</em> </li> <li><strong>resolution</strong> set to <em>wontfix</em> </li> </ul> <p> Closing as we've gone forward with a slightly different approach instead </p> Ticket