Uploaded image for project: 'Automation Hub'
  1. Automation Hub
  2. AAH-2000

Private ansible repositories

This issue belongs to an archived project. You can view it, but you can't modify it. Learn more

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Done
    • Icon: Normal Normal
    • 2.4, crc-2023-06-27
    • None
    • Backend
    • None
    • False
    • Hide

      None

      Show
      None
    • False
    • Hide
      • Private repositories and the content in them are only viewable by users who have permissions to view them
        • Object and model level permissions should both apply here. IE if a user has model level view permissions on repositories, they should see all private repos
      • Users with permissions to modify repositories can turn those repositories into private repositories
      Show
      Private repositories and the content in them are only viewable by users who have permissions to view them Object and model level permissions should both apply here. IE if a user has model level view permissions on repositories, they should see all private repos Users with permissions to modify repositories can turn those repositories into private repositories

      Problem Description: All collection repositories and their contents are currently visible by all authenticated users.

      Proposed Solution: Allow users to mark a repository as "private", which will hide the repository and it's contents from any user that doesn't have permissions to view the repository.

      At a very minimum this will require a private flag on repositories in pulp ansible (similar to how pulp container works). From here we can add the correct permissions and queryset scoping to the pulp APIs via access policies.

      A more robust solution will require RBAC in pulp ansible.

              bmclaugh@redhat.com Brian McLaughlin
              dnewswan David Newswanger (Inactive)
              Archiver:
              ranumula@redhat.com Raju Anumula
              Christian Torrens Christian Torrens

                Created:
                Updated:
                Resolved:
                Archived: