Version 13 (modified by 14 years ago) ( diff ) | ,
---|
Pakistan Authorisation
Introduction
This page describes the proposed Authorisation settings within Sahana for the Pakistan Deployment and pending tasks to implement them.
Status
In process. Awaiting some code modifications
Levels
User
Applies To
Any person who registers, verifies their email and logs into Sahana
Permissions
- Add Records
- Edit their own records
Editor
Applies To
Users are granted Editor Status upon request if they.
- Are given the authority by a User Administrator, with justification documented
- e.g. Are a member of an Authorised Organisation (as set by the administrators)
- e.g. Enter 10 or more resources into Sahana
Requests should be sent to ???
Permissions
- Add records
- Edit all Records
- Delete records from view (Note that this is a 'soft' deletion - records are still available in the database, just hidden from view)
Role (group)
3 - Editor
User Administrator
Applies To
Trusted users from partner organisations (eg. Rotary) as allocated by the Administrators.
Permissions
- Same as Editor
- Delete Records restricted just to UserAdmin?
- Edit auth_membership resources in order to add users to Editor role
Role (group)
13 - UserAdministrator
Administrator
Applies To
Trusted Members of the Sahana Software Foundation
Permissions
Full Access including:
- Map Viewer settings
- access to the raw database
Contact
Infrastructure Administrator
These rights are not registered within Sahana
Applies To
Trusted Members of the Sahana Software Foundation
Permissions
- Log on to the server to change settings, upgrade and backup
Contact
To Do
- Restrict permissions for Users (add and edit own) and Editors (no delete)
- Grant limited Admin permissions to User Admin
- Allocate User Admin Roles
- Add a Comments Field to the auth_membership table to track the reason people are given authority
- Map Service Catalogue made admin tool > #486
- Enable administrators to merge locations > #482