From 4dfb815dc961967152edd6a69fcbd26d892d30d7 Mon Sep 17 00:00:00 2001
From: amentis <amentis@cite.gr>
Date: Mon, 3 Jun 2024 15:09:17 +0300
Subject: [PATCH] change annotation permissions.yml

---
 .../src/main/resources/config/permissions.yml | 40 +++++++++++++------
 1 file changed, 27 insertions(+), 13 deletions(-)

diff --git a/annotation-service/annotation-web/src/main/resources/config/permissions.yml b/annotation-service/annotation-web/src/main/resources/config/permissions.yml
index 870709c9c..8c08495a3 100644
--- a/annotation-service/annotation-web/src/main/resources/config/permissions.yml
+++ b/annotation-service/annotation-web/src/main/resources/config/permissions.yml
@@ -4,27 +4,24 @@ permissions:
       roles:
         - TenantAdmin
         - TenantUser
-        - TenantManager
-        - TenantDescriptionTemplateEditor
+        - TenantPlanManager
+        - TenantConfigManager
       clients: [ ]
       allowAnonymous: false
       allowAuthenticated: false
     # Tenants
     BrowseTenant:
-      roles:
-        - Admin
+      roles: [ ]
       clients: [ ]
       allowAnonymous: false
       allowAuthenticated: false
     EditTenant:
-      roles:
-        - Admin
+      roles: [ ]
       clients: [ "opencdmp-api-dev" ]
       allowAnonymous: false
       allowAuthenticated: false
     DeleteTenant:
-      roles:
-        - Admin
+      roles: [ ]
       claims: [ ]
       clients: [ "opencdmp-api-dev" ]
       allowAnonymous: false
@@ -32,6 +29,7 @@ permissions:
     AllowNoTenant:
       roles:
         - Admin
+        - InstallationAdmin
       claims: [ ]
       clients: [ ]
       allowAnonymous: false
@@ -39,19 +37,17 @@ permissions:
     # Users
     BrowseUser:
       roles:
-        - TenantAdmin
+        - Admin
       clients: [ ]
       allowAnonymous: true
       allowAuthenticated: false
     EditUser:
-      roles:
-        - TenantAdmin
+      roles: [ ]
       clients: [ "opencdmp-api-dev" ]
       allowAnonymous: false
       allowAuthenticated: false
     DeleteUser:
-      roles:
-        - TenantAdmin
+      roles: [ ]
       claims: [ ]
       clients: [ "opencdmp-api-dev" ]
       allowAnonymous: false
@@ -59,6 +55,10 @@ permissions:
     #Annotation
     BrowseAnnotation:
       roles:
+        - Admin
+        - InstallationAdmin
+        - TenantPlanManager
+        - TenantConfigManager
         - TenantAdmin
       entityAffiliated: true
       clients: [ ]
@@ -66,6 +66,10 @@ permissions:
       allowAuthenticated: false
     NewAnnotation:
       roles:
+        - Admin
+        - InstallationAdmin
+        - TenantPlanManager
+        - TenantConfigManager
         - TenantAdmin
       entityAffiliated: true
       clients: [ ]
@@ -73,12 +77,20 @@ permissions:
       allowAuthenticated: false
     EditAnnotation:
       roles:
+        - Admin
+        - InstallationAdmin
+        - TenantPlanManager
+        - TenantConfigManager
         - TenantAdmin
       clients: [ ]
       allowAnonymous: true
       allowAuthenticated: false
     DeleteAnnotation:
       roles:
+        - Admin
+        - InstallationAdmin
+        - TenantPlanManager
+        - TenantConfigManager
         - TenantAdmin
       entityAffiliated: false
       clients: [ ]
@@ -87,12 +99,14 @@ permissions:
     #Tenant Configuration
     BrowseTenantConfiguration:
       roles:
+        - Admin
         - TenantAdmin
       clients: [ ]
       allowAnonymous: false
       allowAuthenticated: false
     EditTenantConfiguration:
       roles:
+        - Admin
         - TenantAdmin
       clients: [ ]
       allowAnonymous: false