Uploaded image for project: 'Sling'
  1. Sling
  2. SLING-5355

Create service users and ACLs from the provisioning model

    XMLWordPrintableJSON

Details

    Description

      As discussed in the "Removing loginAdministrative, how to test that, and service username conventions" thread on our dev list [1] we need to be able to create service users and set the corresponding ACLs from our provisioning model.

      This should be implemented using distinct utility classes, one for the users and one for the ACLs, that take simple mini-languages as input. This will allow for reusing these utilities in test code for example.

      [1] http://markmail.org/message/kcvuhwfdald2dyuz

      Edit: high-level requirements

      As discussed in the "SLING-5355 - configs vs. content for ACLs and service users" thread - http://markmail.org/message/tzno2via2wjckhuc

      • HR1 - Create service users and set their ACLs as defined in the Sling instance's provisioning model.
      • HR2 - Create initial paths like /var/discovery, so that ACLs can be set on them.
      • HR3 - Make the full text of the ACL definitions available at runtime for auditing purposes (see Michael Marth's Dec.17 comment in SLING-5355). Also useful for upgrades where merging with conflict detection is needed.

      Attachments

        Issue Links

          Activity

            People

              bdelacretaz Bertrand Delacretaz
              bdelacretaz Bertrand Delacretaz
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: