- changed status to resolved
Groups and permissions
Issue #14
resolved
For us to be able to control access to certain functionality on the portal we need to implement a permissions-based security model. We can use the builtin Django groups and permissions to do that.
We have the following groups:
- Observers
- Technical Reviewers
- TAC
- Proposal Coordinators
Default all new users to the "Observer" group. Additional permissions will have to be granted by an administrator from the Django admin.
In addition to the above groups we also need to create custom permissions on proposals and link the permissions to their respective groups. An observer for example can create, edit and submit proposals.
Also look into creating this configuration as a database fixture.
Comments (1)
-
reporter - Log in to comment
Merged in matthiasschulz/observer-portal/permissions-14 (pull request #24)
Created different user groups. Fixes
#14→ <<cset 921bcb3af1e6>>