Allow limiting the content types associated to manager roles, add a global manager role like ou scoped manager roles
- New setting A2_RBAC_MANAGED_CONTENT_TYPES
- Create manager roles only for listed content types
a2_rbac: allow limiting permissions of OU managers (fixes #7787)
A new setting is added named A2_RBAC_MANAGED_CONTENT_TYPES, it
is a list of pairs of (app, model_name) which specify which object
permissions should be created and associated to the super-user role.
A new global super-user role is also added by this patch.
If A2_RBAC_MANAGED_CONTENT_TYPES is None (the default value), roles
sub-roles are created for each registered contents (currently user,
roles, organizational units, and services). If
A2_RBAC_MANAGED_CONTENT_TYPES is the empty tuple, no role is created
To limit permissionsto users and roles, set:
A2_RBAC_MANAGED_CONTENT_TYPES = (
Updated by Benjamin Dauvergne over 5 years ago
- Status changed from Nouveau to Résolu (à déployer)
- % Done changed from 0 to 100
Appliqué par commit authentic2|553887fd61bcc23dfbfd30210f72a2b7f1dc9a51.