You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@trafficcontrol.apache.org by "Nir Sopher (JIRA)" <ji...@apache.org> on 2017/07/25 18:14:00 UTC

[jira] [Created] (TC-461) Delivery-service tenancy based access control - Steering Target

Nir Sopher created TC-461:
-----------------------------

             Summary: Delivery-service tenancy based access control - Steering Target
                 Key: TC-461
                 URL: https://issues.apache.org/jira/browse/TC-461
             Project: Traffic Control
          Issue Type: Improvement
          Components: Traffic Ops
            Reporter: Nir Sopher


We have recently added "tenancy" to the project. 
With tenancy, every resource have a tenant, where resource can be a delivery-service, a server (future) and even a user.
We are now starting to enforce access-control based on the resource tenancy. A user can manage a resource only if the resource is under the user tenancy.

This JIRA deals with another step of "delivery-service as a resource" - enforcing via the API access control on DS steering target: In order to add a steering target DS1 to steering DS ST1, the user should have access to the tenants of DS1 and ST1. In order to read the record, access to ST1 is enough 



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)