Authorization documentation #300
Conversation
datamel
force-pushed
the
authorization-documentation
branch
from
ca725b1
to
e35c42e
Compare
src/user-guide/sharing-access-to-workflows/sharing-access-to-workflows.rst
Outdated
Show resolved
Hide resolved
src/user-guide/sharing-access-to-workflows/sharing-access-to-workflows.rst
Outdated
Show resolved
Hide resolved
src/user-guide/sharing-access-to-workflows/sharing-access-to-workflows.rst
Outdated
Show resolved
Hide resolved
| Such behaviours cannot be controlled through technical measures so must be | ||
| enforced by site policy. By the same token, however, because Cylc UI Servers | ||
| (and Schedulers) run as the user, one user cannot compromise another user's | ||
| account using Cylc. |
There was a problem hiding this comment.
| account using Cylc. | |
| UI Server. |
There was a problem hiding this comment.
That sentence was suggested by me. I'm not sure I worded it very well, or that your suggestion here is correct either. Technically, granting another user access to my workflows could (or does) compromise my UIS and my account, but that's by design. What I meant to suggest was that granting another user access to my account cannot compromise any other users' account (because everything I granted access to runs as me).
src/user-guide/sharing-access-to-workflows/sharing-access-to-workflows.rst
Outdated
Show resolved
Hide resolved
datamel
force-pushed
the
authorization-documentation
branch
from
0c25d35
to
690e138
Compare
update 7-8 Add link to authorisation from architecture remove ping from READ
datamel
force-pushed
the
authorization-documentation
branch
from
3d8b31e
to
6051775
Compare
|
Rebased. There is still an unresolved comment relating to this sentence... |
|
Thanks @datamel I'll get this merged. Will reconsider the hard-to-word sentence as a follow-up. |
Accompanies cylc/cylc-uiserver#204.
Partially addresses Document Configurable Authorization #271.
Documents authorization and adds a new section,
Sharing Workflowsto the user-guide.