]> git.proxmox.com Git - pve-access-control.git/commit
projects / pve-access-control.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a62d78d) | patch
add privileges and paths for cluster resource mapping
authorDominik Csapak <d.csapak@proxmox.com>
Tue, 6 Jun 2023 13:52:00 +0000 (15:52 +0200)
committerThomas Lamprecht <t.lamprecht@proxmox.com>
Wed, 7 Jun 2023 16:58:33 +0000 (18:58 +0200)
commit8b5fd2e66eea77947507f0aa226c90534c9bcde8
treed696eb3d0868f29f7f30ca4013c02137d7c7a14etree
parenta62d78db3398417b302249b3593e75a783d9a4e3commit | diff
add privileges and paths for cluster resource mapping

uses the privileges:

Mapping.Use
Mapping.Modify
Mapping.Audit

on /mapping/{TYPE}/{id}

so that we can assign privileges on resource level

this will generate new roles (PVEMappingUser, PVEMappingAdmin,
PVEMappingAuditor)

note that every user with Permissions.Modify on '/' and propagate can add these
new roles to themselves

Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>
src/PVE/AccessControl.pm diff | blob | blame | history
src/PVE/RPCEnvironment.pm diff | blob | blame | history
Access control framework