Description of problem: Currenlty we manage a lot of systems in Beaker. These systems are made avaialbe to all users. I would like the ability to ban/blacklist users from specific systems. It is possible to use ACL and create groups but that is very time consuming and does not scale very well for exlusions. Thanks, Jeff
If I understanding the request correctly, then the issue is with the fact per-user ACL entries are currently strictly additive - they can't be used to take permissions away that someone is otherwise entitled to through group membership or "Everyone" access. Would a mechanism where a specific user's entry in the ACL could be flagged as an *override* achieve what you're looking for? (For easy application to multiple systems, we'd still like to get back to the idea of "Predefined Access Policies" that can be shared between systems)
Nick, I am not really sure of the implementation. What I want is the ability to have the system still be used by Everyone but selectively ban others. Thanks, Jeff
Hi Guys, It has been several months since the last update. I had out of band conversation with Dan Callahan and Rob Potts. But I still am not sure of when this will be available. Can we move this from rule-engine: Beaker-backlog to Beaker roadmap. Thanks, Jeff
Dear Jeff, sorry for the missing update here. We are working on Bug 1251356 which will allow us to finish Bug 1220610. Bug 1251356 is almost ready to be merged so we can start on finishing 1220610. That will provide the functionality you anticipated with this Bug.
Jeff, is the solution in bug 1220610 working okay for you? Can we close this as WONTFIX now?
Agreed Thanks for checking.