canmove, Confirmed users
6,441
edits
User:Bhearsum/Balrog/Administration: Difference between revisions
Jump to navigation
Jump to search
User:Bhearsum/Balrog/Administration (view source)
Revision as of 17:22, 8 August 2011
, 8 August 2011→Authentication/Accounts
| Line 63: | Line 63: | ||
= Authentication/Accounts = | = Authentication/Accounts = | ||
<p>Authentication through LDAP will be handled by the web server and passed onto AUS3. AUS3 will maintain a database of usernames and permissions. Permissions will be granted through ACLs. There will be one entry in the ACL for every URL in the API as well as an entry to allow/disallow user management.</p> | |||
<p>Most humans who use AUS3 will likely have permissions for everything except user management.</p> | |||
<p>Build machines will also have an account they must use, and will only be allowed to make changes to a limited set of things:</p> | |||
* /releases/[name]/builds/[platform]/[locale] PUT | |||
** For adding new nightly or release builds. | |||
** This method can implicitly create required intermediaries, should we grant those too, for clarity? | |||
* /rules/[id] POST | |||
** For updating test channel rules during a release. | |||
= API = | = API = | ||