Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RRR Admin CRUD #253

Closed
22 of 24 tasks
Tracked by #327
, #338
...
TheTechArch opened this issue Sep 25, 2023 · 1 comment
Closed
22 of 24 tasks
Tracked by #327
, #338
...

RRR Admin CRUD #253

TheTechArch opened this issue Sep 25, 2023 · 1 comment
Assignees
@Alxandr
Labels
kind/user-story Used for issues that describes functionality for our users. status/draft Status: When you create an issue before you have enough info to properly describe the issue.
Milestone
Klargjort for mig...

Comments

@TheTechArch
Copy link
Member

TheTechArch commented Sep 25, 2023
edited by Alxandr
Loading

Description

We need an API to let resource owners administrate the resource rights registry.

As a service owner, you can add, remove, or update rights for a given organization/person for a given resource.

This data will be used in PDP to deny/allow access to a resource that has enabled RRR.

It will also disable access to delegating rights relegated to resources.

Model

{
"RRRID": "9726e418-911e-4c55-a2e5-186446fa0b7c"
"Resource": "urn:altinn:resource:skd_skattemelding,
"PartyID": 1234325,
"Party": "orgno:923488",
"Action": ["Read","Write"],
"RequiredClaim": "urn:scope:flyttemelding"
}

Additional Information

When adding rights to a resource, the API needs to verify that.

  • Authenticated org has scope for resource registry
  • Authenticated org owns the resource in question
  • Verify that the resource has enabled RRR
  • Find the correct party and add it to row for performance lookup
  • When deleting a row, we need to add it do a history tabell

Tasks
Beta Give feedback
  10. Provide error codes to frontend (RRR) #418
    kind/task
    Alxandr

API methods
Beta Give feedback
  5. PATCH /resourceregistry/api/v1/access-lists/{owner}/{identifier} #417
    kind/task
  13. GET /resourceregistry/api/v1/access-lists/memberships #416
    kind/task
    Alxandr

Known bugs
Beta Give feedback
  1. Trying to insert a resource-connection to a resource that does not exist returns a 500 error due to a database violation #421
    kind/task

Acceptance Criteria

  • Service Owners can add RRR data only for resources owned by them
  • Service owner can modify RRR data only for resources owned by them
  • Only orgs with write scope to resource registry is allowed to access RRR api

Related
@TheTechArch TheTechArch added kind/user-story Used for issues that describes functionality for our users. status/draft Status: When you create an issue before you have enough info to properly describe the issue. labels Sep 25, 2023
@TheTechArch TheTechArch mentioned this issue Oct 30, 2023
Closed
@Alxandr Alxandr mentioned this issue Dec 7, 2023
Merged
@rtafj rtafj mentioned this issue Jan 5, 2024
Closed
This was referenced Jan 8, 2024
Merged
Merged
@Alxandr Alxandr mentioned this issue Jan 17, 2024
Merged
5 tasks
@TheTechArch TheTechArch mentioned this issue Jan 25, 2024
Open
This was referenced Feb 5, 2024
Closed
Merged
Merged
This was referenced Feb 12, 2024
Merged
Merged
Merged
Merged
@Alxandr
Copy link
Contributor

Alxandr commented Mar 21, 2024

Related: Altinn/altinn-register#180

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Alxandr Alxandr

Labels
kind/user-story Used for issues that describes functionality for our users. status/draft Status: When you create an issue before you have enough info to properly describe the issue.
Projects
Team Tilgangsinfo
Status: ✅ Done
Milestone
Klargjort for migrering av lenketjene...
Development

No branches or pull requests
3 participants
@Alxandr @TheTechArch @annerisbakk