Ticket #59 (new enhancement)

Opened 4 years ago

Last modified 3 years ago

New system for user groups and an RBAC system

Reported by: WanWizard
Priority: medium Milestone: 8.0
Component: ExiteCMS Core Version: 7.2
Severity: Feature Keywords: core security

Description

The current way of linking groups to other groups, and determining group inheritance, is implemented in a Q&D way. This should be changed.

Also, an RBAC system needs to be implemented, in which you have users or groups, which are assigned a role. The assignment can contain filters on rows (i.e. give access to a subset of data), the role can contain filters on columns (i.e. data visibility), and should contain access rights for the different objects defined.

Probably, the code for database access (the query creation part) must be changed as well, so that all queries honour the RBAC rules.

Change History

comment:1 Changed 3 years ago by WanWizard

  • Milestone set to 7.3

comment:2 Changed 3 years ago by WanWizard

  • Version changed from 7.1 to 7.2

comment:3 Changed 3 years ago by webmaster

  • Milestone changed from 7.3 to 8.0 beta 1

moved to version 8.

Note: See TracTickets for help on using tickets.