Roles for RPM plugin

ppicka · March 8, 2022, 1:45pm

Hello,
I’d like to start a discussion about RPM RBAC and how it will be used.
There is a draft starting with two basic roles which should like this:

Viewer:

just to view and use (as well as content app - to use client as dnf to fetch content)

Admin:

this user will be able to create and remove repositories, publications and distributions.
in short - to do everything

I’d like to brainstorm if this basic approach is enough or there are more ideas or needs how we can improve it.

Eg. there is an idea that there could be a maintainer which cannot create/destroy repositories but can sync and re-publish repositories to keep content up to date.

I’d like to name @ggainey, @dralley, @wibbit, @Conan_Kudo to discuss if interested in.

wibbit · November 13, 2022, 10:04am

I totally missed this mention, apologies.

Do you have a link to the draft (my be it’s not draft any more), I’d like to have a read, and contribute, if it is still of interest.

ppicka · November 14, 2022, 12:20pm

Hello,

The best link right now is https://github.com/pulp/pulp_rpm/blob/main/pulp_rpm/app/viewsets/repository.py#L149 as it is already implemented. I believe if you would like contribute or send any request for feature github issues will be the best option.