Bug 1125869 - Remove Project role based permissions
Summary: Remove Project role based permissions
Keywords:
Status: ASSIGNED
Alias: None
Product: JBoss BRMS Platform 6
Classification: Retired
Component: Business Central
Version: 6.0.2
Hardware: Unspecified
OS: Unspecified
medium
high
Target Milestone: ---
: ---
Assignee: Edson Tirelli
QA Contact: Jiri Locker
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2014-08-01 09:30 UTC by manstis
Modified: 2016-01-08 22:11 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:
Type: Bug


Attachments (Terms of Use)

Description manstis 2014-08-01 09:30:49 UTC
Description of problem:

Projects currently support restrictions on who can access them by assigned roles to projects that Users need to have in order to be able to access.

This is problematic, in so far as it is impossible to restrict access to Projects in the underlying git repository as a git repository can only be secured at the repository level. Thus the additional restriction in the UI can be easily circumvented.

If a project needs to be protected from unauthorized access; it should be placed in a separate repository.

Version-Release number of selected component (if applicable):

6.0.2.

Comment 1 Radovan Synek 2014-08-01 10:17:43 UTC
Mike,

I am afraid restrictions on organizational units also don't make much sense from the same reason. Correct me if I am wrong, but git does not care about any org. unit above its repositories. So, when someone sets the restrictions on org. unit in a good belief that all included repositories are safe now, it takes effect in UI only and anyone with the knowledge of repositories names can clone them anyway.

Comment 6 Edson Tirelli 2015-02-18 19:18:48 UTC
This requires further analysis and clarification from PM. Requesting it to be deferred to 6.2.0.


Note You need to log in before you can comment on or make changes to this bug.