Page MenuHomePhabricator
Create Task
Maniphest T135249

create conduit method for the creation of phabricator policy objects
Closed, ResolvedPublic
Actions

Description

In T133252#2291840, @mmodell wrote:

@bd808: I can deploy newer upstream code for you.

That would be great to keep the proof of concept work moving forward.

With regard to policies, I've had considerable experience working with those. I can help write a custom conduit method that will generate the exact policy you need and return the phid for use with the repository edit api.

Is the content of the policy straightforward? I imagine it would be something like:

{
  "projects": "#repository-admins",
  "users": ["list", "usernames"]
}

Something straightforward like that isn't difficult at all to write.

That would also be most excellent. When the web gui is used the sort of policy I'm imagining looks a bit like this in the POST to Phab:

{
  "default": "deny",
  "rules": [
    {
      "action":"allow",
      "rule":"PhabricatorProjectsPolicyRule",
      "value":[
        "PHID-PROJ-74bt3nlwd4hl2ofmw77h"
      ]
    },
    {
      "action":"allow",
      "rule":"PhabricatorUsersPolicyRule",
      "value":[
        "PHID-USER-wzvm7msgcojlqmymu3vc",
        "PHID-USER-sikaw4dhyejwbfg2wujb"
      ]
    }
  ]
}

It's easy enough to look up the phids for things from their symbolic names.

And the response looks like:

{
  "error":null,
  "payload":{
    "phid":"PHID-PLCY-nsfusm6s3fmvw55ytam6",
    "info":{
      "name":"Custom Policy",
      "full":"Custom Policy",
      "icon":"fa-certificate"
    }
  }
}

Revisions and Commits

rPHEX phabricator-extensions
ClosedD236 Add new conduit method to create access control policies
D241rPHEXc645004fe94d Update library_map and module_cache

Related Objects
Search...

Event Timeline

mmodell created this task.May 13 2016, 5:00 PM
Restricted Application added a subscriber: Zppix. · View Herald TranscriptMay 13 2016, 5:00 PM
bd808 removed a project: User-bd808.May 13 2016, 5:05 PM
Ricordisamoa removed a subscriber: Ricordisamoa.May 18 2016, 1:15 AM
mmodell added a revision: D236: Add new conduit method to create access control policies.May 20 2016, 8:52 PM
bd808 moved this task from Triage to Waiting for code review on the Toolforge board.May 22 2016, 4:08 AM
bd808 added a revision: D241: Update library_map and module_cache.May 25 2016, 2:56 AM
bd808 added a commit: rPHEXc645004fe94d: Update library_map and module_cache.May 25 2016, 5:44 AM
mmodell added a comment.EditedMay 25 2016, 9:08 PM

@bd808: is the current implementation satisfactory? Should this task be resolved?

bd808 closed this task as Resolved.May 25 2016, 9:09 PM
In T135249#2328097, @mmodell wrote:

@bd808: is the current implementation satisfactory? Should this task be resolved?

Yeah. It's working well. If I find an edge case I'll open a new bug about it. Thanks for your help on this.

bd808 moved this task from Backlog to Done on the Community-Tech-Tool-Labs board.Jun 3 2016, 11:44 PM
Phabricator_maintenance removed a subscriber: yuvipanda.Jun 7 2017, 6:42 PM
Restricted Application added a project: Release-Engineering-Team (Kanban). · View Herald TranscriptJun 7 2017, 6:42 PM
Phabricator_maintenance edited projects, added RelEng-Archive-FY201718-Q1; removed Release-Engineering-Team (Kanban), Toolforge.Sep 26 2017, 11:47 PM
Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL