Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create role-specific namespace for grants #533

Closed
wants to merge 2 commits into from
Closed

Create role-specific namespace for grants #533

wants to merge 2 commits into from

Conversation

macintux
Copy link
Contributor

This is an exclusive-or of the jrd-security-role-uniqueness branch, which attempted to constrain users and groups to have distinct names. This branch enables operators to define names that overlap by creating distinct places in core metadata for grants for users vs groups.

riak-admin will (for grant/revoke only, although that list of commands could be extended trivially) support user/<user> and group/<group> syntax to disambiguate grants or revokes when names are not unique. The tool will mandate the use of that syntax when name conflicts occur, although at the moment the tools have not been updated to illustrate the syntax or to explicitly ask for it.

The user/ or group/ prefixes have also been used internally when generating a list of permissions so that the print-user command can identify which permissions apply to the user vs any group by the same name.

/cc @Vagabond

This was referenced Feb 19, 2014
Closed
Merged
@macintux
Copy link
Contributor Author

Superseded by #534, closing

@macintux macintux closed this Feb 19, 2014
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@macintux