Test for granular access based on Installation Controller #1212

UsamaEquinorAFK · 2023-11-22T12:33:04Z

Describe the test you would like to make

Write a test, which matches the Role based granular access (Role.Installation.User or Admin) with the current chosen installation (the installation sent as a part of query). Hence we should not be able to make a query for an installation which one does not have access for.

How will this change existing functionality?

Additions to this model inside controller \flotilla\backend\api\Controllers\Models\Role.cs

How will this improvement affect the current Threat Model?

Users/ Admins can only perform operations on installations assigned to them

andchiind · 2023-11-28T14:01:05Z

Dependent on #1211
and arguably also #1202

UsamaEquinorAFK added feature New feature or request backend Backend related functionality labels Nov 22, 2023

UsamaEquinorAFK changed the title ~~Test for granular access based on Installation Code~~ Test for granular access based on Installation Controller Nov 22, 2023

tsundvoll mentioned this issue Nov 22, 2023

Implement Role Based Access to Flotilla #1154

Closed

2 tasks

andchiind self-assigned this Dec 11, 2023

andchiind mentioned this issue Dec 12, 2023

Utilise non-admin roles in tests #1253

Merged

andchiind closed this as completed in #1253 Dec 22, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Test for granular access based on Installation Controller #1212

Test for granular access based on Installation Controller #1212

UsamaEquinorAFK commented Nov 22, 2023

andchiind commented Nov 28, 2023

Test for granular access based on Installation Controller #1212

Test for granular access based on Installation Controller #1212

Comments

UsamaEquinorAFK commented Nov 22, 2023

andchiind commented Nov 28, 2023