From 222f1d1f782529c35bd3d142ef6b3cf7ccfbf359 Mon Sep 17 00:00:00 2001 From: Benjamin Klix Date: Thu, 30 Nov 2023 13:19:35 +0100 Subject: [PATCH] UPDATE: Add role labels and descriptions --- Configuration/Policy.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/Configuration/Policy.yaml b/Configuration/Policy.yaml index 688c578..39d1d32 100644 --- a/Configuration/Policy.yaml +++ b/Configuration/Policy.yaml @@ -11,6 +11,8 @@ privilegeTargets: roles: 'Wegmeister.DatabaseStorage:DatabaseStorageViewer': + label: Database Storage Viewer + description: User is allowed to view all database storage lists and their entries. privileges: - privilegeTarget: 'Wegmeister.DatabaseStorage:Backend.ListDatabaseStorageItems' permission: GRANT @@ -18,16 +20,26 @@ roles: permission: GRANT 'Wegmeister.DatabaseStorage:DatabaseStorageExporter': + label: Database Storage Exporter + description: | + User is allowed to export all database storage lists. + Requires a role that can view the lists, otherwise only direct links to the export will work. privileges: - privilegeTarget: 'Wegmeister.DatabaseStorage:Backend.DatabaseStorageExporter' permission: GRANT 'Wegmeister.DatabaseStorage:DatabaseStorageDeleter': + label: Database Storage Deleter + description: | + User is allowed to delete all database storage lists or single entries. + Requires a role that can view the lists, otherwise only direct links to delete a list or an entry will work. privileges: - privilegeTarget: 'Wegmeister.DatabaseStorage:Backend.DatabaseStorageDeleter' permission: GRANT 'Wegmeister.DatabaseStorage:DatabaseStorageAdmin': + label: Database Storage Admin + description: User is allowed to view, export and delete all database storage lists and their entries. privileges: - privilegeTarget: 'Wegmeister.DatabaseStorage:Backend.ListDatabaseStorageItems' permission: GRANT