Page MenuHomePhabricator
Create Task
Maniphest T303358

Add RBAC Middleware To Public API Service
Closed, ResolvedPublic5 Estimated Story Points
Actions

Description

In order to restrict access to public APIs to the intended user group, add an RBAC middleware.

  1. Using model and policy env values, initialize an enforcer/authorizer function. (example)
  2. Use this enforcer function to initialize an RBAC middleware. Add this middleware.

Complete architecture for access control:

Screen Shot 2022-04-20 at 10.12.48 AM.png (1×1 px, 533 KB)

Related Objects
Search...

Event Timeline

prabhat created this task.Mar 8 2022, 11:20 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 8 2022, 11:20 PM
prabhat added a parent task: T303354: Introduce Model For User Access Control .Mar 8 2022, 11:20 PM
prabhat added a parent task: T303355: Introduce Policy For User Access Control.
Protsack.stephan triaged this task as High priority.Mar 9 2022, 6:18 PM
Protsack.stephan moved this task from Incoming to Estimated /Discussed on the Wikimedia Enterprise board.Mar 9 2022, 7:22 PM
Lena.Milenko set the point value for this task to 5.Mar 31 2022, 2:58 PM
prabhat updated the task description. (Show Details)Apr 20 2022, 2:14 PM
Tim.abdullin changed the task status from Open to In Progress.Apr 27 2022, 6:08 PM
Tim.abdullin claimed this task.
Tim.abdullin moved this task from Estimated /Discussed to In Progress on the Wikimedia Enterprise board.
Tim.abdullin moved this task from In Progress to Merge Request on the Wikimedia Enterprise board.Apr 30 2022, 5:34 PM
Protsack.stephan moved this task from Merge Request to Machine Readability PB on the Wikimedia Enterprise board.May 11 2022, 11:16 AM
Protsack.stephan moved this task from Machine Readability PB to Done Sprint 18 (13Apr2022-26May2022) on the Wikimedia Enterprise board.May 26 2022, 8:35 AM
Lena.Milenko changed the task status from In Progress to Open.May 26 2022, 11:50 AM
Lena.Milenko closed this task as Resolved.May 30 2022, 1:52 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL