-
Story
-
Resolution: Unresolved
-
Undefined
-
None
-
None
-
None
-
BU Product Work
-
5
-
False
-
-
False
-
OCPSTRAT-1571 - Add Authorization to internal Components of Agent-Based Installer
-
-
-
Installer Sprint 260, Installer Sprint 261, Installer Sprint 262
User Story:
As a user with userAuth, agentAuth, and watcherAuth persona (wait-for and monitor-add-nodes):
- I want to be able to authorize actions specific to each user persona (user, agent, watcher) based on predefined claims.
- I want to ensure that each persona's actions are validated against the claims agreed upon by the installer and Assisted Service.
- I want to enforce role-based permissions to control access and operations during the installation process.
So that I can achieve:
- Proper authorization of actions according to each persona's role.
- Secure execution of tasks by validating them against agreed claims.
- Controlled access to resources and operations, reducing the risk of unauthorized actions during installation.
Acceptance Criteria:
Description of criteria:
- Upstream documentation
- Point 1
- Point 2
- Point 3
(optional) Out of Scope:
Detail about what is specifically not being delivered in the story
Engineering Details:
- (optional) https://github/com/link.to.enhancement/
- (optional) https://issues.redhat.com/link.to.spike
- Engineering detail 1
- Engineering detail 2
This requires/does not require a design proposal.
This requires/does not require a feature gate.
- depends on
-
-
- Code Review
-
-
-
- Code Review
-
- relates to
-
-
- Closed
-
- links to