MaDgiK-CITE
/
argos
13
0
Fork 0
Code Issues Pull Requests Projects Releases 3 Wiki Activity
argos/dmp-backend/web/src/main/resources/config/permissions.yml

851 lines
18 KiB
YAML
Raw Blame History

permissions:
extendedClaims: [ ]
policies:
###### Should Remove after Refactor
AdminRole:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
AuthenticatedRole:
roles: []
clients: [ ]
allowAnonymous: false
allowAuthenticated: true
######
# public
DeferredAffiliation:
roles:
- Admin
- User
- Manager
- DescriptionTemplateEditor
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# public
PublicBrowseDescription:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicBrowseDescriptionTemplate:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicBrowseDmp:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicBrowseDmpReference:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicBrowseDmpUser:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicBrowseReference:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicBrowseUser:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicBrowseDashboardStatistics:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicSendContactSupport:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
PublicBrowseReferenceType:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
# Elastic
ManageElastic:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Deposit
BrowseDeposit:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDeposit:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Language
BrowseLanguage:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
EditLanguage:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteLanguage:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Statistics
BrowseStatistics:
roles: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: true
BrowsePublicStatistics:
roles: [ ]
clients: [ ]
allowAnonymous: true
allowAuthenticated: true
# Description
BrowseDescription:
roles:
- Admin
dmp:
roles:
- Owner
- User
- DescriptionContributor
- Reviewer
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDescription:
roles:
- Admin
dmp:
roles:
- Owner
- DescriptionContributor
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
FinalizeDescription:
roles:
- Admin
dmp:
roles:
- Owner
- DescriptionContributor
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDescription:
roles:
- Admin
dmp:
roles:
- Owner
- DescriptionContributor
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
CloneDescription:
roles:
- Admin
dmp:
roles:
- Owner
- DescriptionContributor
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Tag
BrowseTag:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditTag:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteTag:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# User
BrowseUser:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditUser:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteUser:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
ExportUsers:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
BrowseDmpAssociatedUser:
roles:
- Admin
dmp:
roles:
- Owner
- User
- DescriptionContributor
- Reviewer
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# DescriptionTemplateType
BrowseDescriptionTemplateType:
roles:
- Admin
- User
- Manager
- DescriptionTemplateEditor
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDescriptionTemplateType:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDescriptionTemplateType:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# StorageFile
BrowseStorageFile:
roles: [ ]
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: true
EditStorageFile:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteStorageFile:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# DescriptionTemplate
BrowseDescriptionTemplate:
roles:
- Admin
- DescriptionTemplateEditor
- Manager
- User
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDescriptionTemplate:
roles:
- Admin
- DescriptionTemplateEditor
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDescriptionTemplate:
roles:
- Admin
- DescriptionTemplateEditor
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
CloneDescriptionTemplate:
roles:
- Admin
- DescriptionTemplateEditor
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
CreateNewVersionDescriptionTemplate:
roles:
- Admin
- DescriptionTemplateEditor
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
ImportDescriptionTemplate:
roles:
- Admin
- DescriptionTemplateEditor
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
ExportDescriptionTemplate:
roles:
- Admin
- DescriptionTemplateEditor
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Dmp
BrowseDmp:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDmp:
roles:
- Admin
dmp:
roles:
- Owner
- User
- DescriptionContributor
- Reviewer
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
NewDmp:
roles:
- Admin
- User
- Manager
- DescriptionTemplateEditor
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDmp:
roles:
- Admin
dmp:
roles:
- Owner
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DepositDmp:
roles:
- Admin
dmp:
roles:
- Owner
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
CloneDmp:
roles:
- Admin
dmp:
roles:
- Owner
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
CreateNewVersionDmp:
roles:
- Admin
dmp:
roles:
- Owner
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
FinalizeDmp:
roles:
- Admin
dmp:
roles:
- Owner
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
UndoFinalizeDmp:
roles:
- Admin
dmp:
roles:
- Owner
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
AssignDmpUsers:
roles:
- Admin
dmp:
roles:
- Owner
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
InviteDmpUsers:
roles:
- Admin
dmp:
roles:
- Owner
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# DmpBlueprint
BrowseDmpBlueprint:
roles:
- Admin
- User
- Manager
- DescriptionTemplateEditor
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDmpBlueprint:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
CloneDmpBlueprint:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
CreateNewVersionDmpBlueprint:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
ExportDmpBlueprint:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
ImportDmpBlueprint:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDmpBlueprint:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# EntityDoi
BrowseEntityDoi:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditEntityDoi:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteEntityDoi:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# ViewPage Permissions
ViewDescriptionTemplateTypePage:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Reference Permissions
BrowseReference:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditReference:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteReference:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# DmpReference Permissions
BrowseDmpReference:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDmpReference:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDmpReference:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# DmpUser Permissions
BrowseDmpUser:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDmpUser:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDmpUser:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# SupportiveMaterial Permissions
BrowseSupportiveMaterial:
roles:
- Admin
- User
- Manager
- DescriptionTemplateEditor
clients: [ ]
allowAnonymous: yes
allowAuthenticated: yes
EditSupportiveMaterial:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteSupportiveMaterial:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# ReferenceType Permissions
BrowseReferenceType:
roles:
- Admin
- User
- Manager
- DescriptionTemplateEditor
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditReferenceType:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteReferenceType:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Tenant Permissions
BrowseTenant:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditTenant:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteTenant:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
AllowNoTenant:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# TenantUser Permissions
BrowseTenantUser:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditTenantUser:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteTenantUser:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# DmpDescriptionTemplate Permissions
BrowseDmpDescriptionTemplate:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDmpDescriptionTemplate:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDmpDescriptionTemplate:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# DescriptionReference Permissions
BrowseDescriptionReference:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDescriptionReference:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDescriptionReference:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# DescriptionReference Permissions
BrowseDescriptionTag:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditDescriptionTag:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteDescriptionTag:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Prefilling
BrowsePrefilling:
roles:
- Admin
- DescriptionTemplateEditor
- Manager
- User
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Lock Permissions
BrowseLock:
roles:
- Admin
- DescriptionTemplateEditor
- Manager
- User
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditLock:
roles:
- Admin
dmp:
roles:
- Owner
- User
- DescriptionContributor
- Reviewer
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteLock:
roles:
- Admin
dmp:
roles:
- Owner
- User
- DescriptionContributor
- Reviewer
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# Contact Permissions
SendContactSupport:
roles: []
clients: [ ]
allowAnonymous: false
allowAuthenticated: true
# ActionConfirmation Permissions
BrowseActionConfirmation:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditActionConfirmation:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeleteActionConfirmation:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
# PrefillingSource Permissions
BrowsePrefillingSource:
roles:
- Admin
- DescriptionTemplateEditor
- Manager
- User
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
EditPrefillingSource:
roles:
- Admin
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
DeletePrefillingSource:
roles:
- Admin
claims: [ ]
clients: [ ]
allowAnonymous: false
allowAuthenticated: false
Reference in New Issue View Git Blame Copy Permalink