You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
42 lines
1.2 KiB
42 lines
1.2 KiB
8 months ago
|
|
||
|
|
# System permissions
|
||
|
|
|
||
|
|
[]
|
||
|
|
access = read : [ * ], write : [ admin ]
|
||
|
|
|
||
|
|
### VIEWSTATES: even normal users should be able to create shared viewstates
|
||
|
|
|
||
|
|
[viewstates]
|
||
|
|
access = read : [ * ], write : [ * ]
|
||
|
|
|
||
|
|
### JSON Web Tokens: should only be readable/writable by admin
|
||
|
|
|
||
|
|
[collections/JsonWebTokensV1]
|
||
|
|
access = read : [ admin ], write : [ admin ]
|
||
|
|
|
||
|
|
### SPL2Modules: should only be readable/writable by data orchestrator
|
||
|
|
|
||
|
|
[collections/Spl2Modules]
|
||
|
|
access = read : [ admin ], write : [ admin ]
|
||
|
|
|
||
|
|
### Allow all users to write user role information for SAML users
|
||
|
|
|
||
|
|
[authentication/userToRoleMap_SAML]
|
||
|
|
access = read : [ * ], write : [ * ]
|
||
|
|
|
||
|
|
### Recently Viewed Knowledge Objects: every user should be able to read and write to this collection
|
||
|
|
|
||
|
|
[collections/RecentlyViewedKO]
|
||
|
|
access = read : [ * ], write : [ * ]
|
||
|
|
|
||
|
|
### Per user search history records
|
||
|
|
[collections/SearchHistory]
|
||
|
|
access = read : [ * ], write : [ * ]
|
||
|
|
|
||
|
|
### Home Page Configuration settings: every user should be able to read from this collection, only admins should be able to write to this collection
|
||
|
|
[collections/HomePageAdminConfig]
|
||
|
|
access = read : [ * ], write : [ admin ]
|
||
|
|
|
||
|
|
### Per user custom resources with information for url, title, and opening context
|
||
|
|
[collections/HomePage]
|
||
|
|
access = read : [ * ], write : [ * ]
|