Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-31217

SAC - remove SAC checks from datastore

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • None
    • None
    • None
    • SAC - remove checks from the datastore layer
    • Future Sustainability
    • False
    • Hide

      None

      Show
      None
    • False
    • Not Selected
    • In Progress
    • 100% To Do, 0% In Progress, 0% Done
    • Rox Sprint 4.10A - Global, Rox Sprint 4.10B, Rox Sprint 4.11A

      With the migration to postgres and later projects (like search views), the scoped access control checks have moved deeper in the data access layers (from datastore to generated store code to postgres query generator).

      In most datastores, the access control checks are rather basic and could be delegated to the query generator layer.

      This epic aims at:

      • list the datastores that have "complex" access control logic and flag them as needing access control
      • remove the unnecessary access control checks from the other datastores

              ybrillou@redhat.com Yann Brillouet
              ybrillou@redhat.com Yann Brillouet
              ACS Sensor & Ecosystem
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: