argos/annotation-service/annotation-web/src/main/resources/config/permissions.yml

permissions:
  policies:
    DeferredAffiliation:
      roles:
        - Admin
        - User
        - Manager
        - DescriptionTemplateEditor
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    # Tenants
    BrowseTenant:
      roles:
        - Admin
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    EditTenant:
      roles:
        - Admin
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    DeleteTenant:
      roles:
        - Admin
      claims: [ ]
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    AllowNoTenant:
      roles:
        - Admin
      claims: [ ]
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    # Users
    BrowseUser:
      roles:
        - Admin
      clients: [ ]
      allowAnonymous: true
      allowAuthenticated: false
    EditUser:
      roles:
        - Admin
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    DeleteUser:
      roles:
        - Admin
      claims: [ ]
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    #Annotation
    BrowseAnnotation:
      roles:
        - Admin
      entityAffiliated: true
      clients: [ ]
      allowAnonymous: true
      allowAuthenticated: false
    NewAnnotation:
      roles:
        - Admin
      entityAffiliated: true
      clients: [ ]
      allowAnonymous: true
      allowAuthenticated: false
    EditAnnotation:
      roles:
        - Admin
      clients: [ ]
      allowAnonymous: true
      allowAuthenticated: false
    DeleteAnnotation:
      roles:
        - Admin
      entityAffiliated: false
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    #Tenant Configuration
    BrowseTenantConfiguration:
      roles:
        - Admin
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
    EditTenantConfiguration:
      roles:
        - Admin
      clients: [ ]
      allowAnonymous: false
      allowAuthenticated: false
Adding new annotation service 2024-02-09 17:50:34 +01:00			`permissions:`
			`policies:`
annotation authz changes 2024-03-29 10:47:27 +01:00			`DeferredAffiliation:`
			`roles:`
			`- Admin`
			`- User`
			`- Manager`
			`- DescriptionTemplateEditor`
			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`# Tenants`
			`BrowseTenant:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
			`EditTenant:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
			`DeleteTenant:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`claims: [ ]`
			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
			`AllowNoTenant:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`claims: [ ]`
			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
			`# Users`
			`BrowseUser:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: true`
			`allowAuthenticated: false`
			`EditUser:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
			`DeleteUser:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`claims: [ ]`
			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
annotation authz changes 2024-03-29 10:47:27 +01:00			`#Annotation`
			`BrowseAnnotation:`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
annotation authz changes 2024-03-29 10:47:27 +01:00			`entityAffiliated: true`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: true`
			`allowAuthenticated: false`
annotation authz changes 2024-03-29 10:47:27 +01:00			`NewAnnotation:`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`roles:`
			`- Admin`
annotation authz changes 2024-03-29 10:47:27 +01:00			`entityAffiliated: true`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: true`
			`allowAuthenticated: false`
Adding annotation entity on annotation service 2024-02-12 17:00:50 +01:00			`EditAnnotation:`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`roles:`
			`- Admin`
			`clients: [ ]`
			`allowAnonymous: true`
			`allowAuthenticated: false`
Adding annotation entity on annotation service 2024-02-12 17:00:50 +01:00			`DeleteAnnotation:`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`roles:`
			`- Admin`
annotation authz changes 2024-03-29 10:47:27 +01:00			`entityAffiliated: false`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
			`#Tenant Configuration`
			`BrowseTenantConfiguration:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: false`
			`allowAuthenticated: false`
			`EditTenantConfiguration:`
			`roles:`
update configurations 2024-03-28 13:57:51 +01:00			`- Admin`
Adding new annotation service 2024-02-09 17:50:34 +01:00			`clients: [ ]`
			`allowAnonymous: false`
annotation authz changes 2024-03-29 10:47:27 +01:00			`allowAuthenticated: false`