LDAP authenticated users default permissions #3072
Comments
|
The only alternative I see now, is to manually give PRODUCT_ACCESS permissions to every user for every project, which will result to thousands of settings. Is there a better alternative that I might be missing? |
|
@jimis If there is a global LDAP group (e.g.: your_compary_user), it can be used to add access permission for everybody who are in this group. You have to configure it per product: |
|
@csordasmarton AFAIK there is no such group. |
|
Any opinions on the suggested solutions to the problem? I could try and implement something, but I would need some guidance, I've looked into how permissions are queried and it goes through many levels of abstraction... |
This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Solves Ericsson#3072.
|
I went on and implemented a way to create custom groups, that might contain any user we like, based on regular expressions. Let me know what you think. |
This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Solves Ericsson#3072.
This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Solves Ericsson#3072.
This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Resolves github issue Ericsson#3072.
This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Resolves github issue Ericsson#3072.
This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Resolves github issue Ericsson#3072.
This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Resolves github issue Ericsson#3072.
* [server] Add regex_groups authentication option This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Resolves github issue #3072.
* [server] Add regex_groups authentication option This creates new groups that users can belong to if their username matches some regular expression. Makes it possible to have all users belonging to a group in order to set default permissions for products. Resolves github issue #3072.
I have setup LDAP authentication in CodeChecker for our organisation. I want to give PRODUCT_ACCESS permission to all users for all projects, so that everybody in the organisation can view and comment on issues.
I see different alternative solutions to this:
.*Please note that there are no useful groups that all users belong to.
The text was updated successfully, but these errors were encountered: