You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@kylin.apache.org by "Joanna He (JIRA)" <ji...@apache.org> on 2017/07/27 06:21:00 UTC

[jira] [Created] (KYLIN-2760) Enhance Project Level ACL

Joanna He created KYLIN-2760:
--------------------------------

             Summary: Enhance Project Level ACL
                 Key: KYLIN-2760
                 URL: https://issues.apache.org/jira/browse/KYLIN-2760
             Project: Kylin
          Issue Type: Improvement
          Components: General
    Affects Versions: v2.0.0
         Environment: all 
            Reporter: Joanna He


We are planning on enhancing the project level ACL, the plan as below:
There are five types of predefined user access: System Admin, Project Admin, Management, Operation and Query. 
When syncing an LDAP new user, admin has the option to set the new user as system admin. The other user access, however, need to be set at project level, that means other than system admin which is applied globally on an instance, the other four user access are granted on project by project basis. So that one user, say johndoe, can be project admin in Project A and management access in Project B. User role modeler and analyst that was set when syncing users will be retired.

 The expected access level for those 5 types of user access are defined as attached.





--
This message was sent by Atlassian JIRA
(v6.4.14#64029)