538276 - [z] Add groups model/interactions with users model

Status: RESOLVED FIXED

(addons.mozilla.org Graveyard :: Admin/Editor Tools, defect, P1)

Description

[Wil Clouser [:clouserw]]

dd is doing the users/sessions in bug 534026 so this kinda goes along with that.  We need group stuff too.

Comment 1

[Dave Dash [:davedash, :dd] (assign all bugs to mbrandt)]

Can I get more details?  E.g. where these things are set, what tables to look at.  Not necessary, because I can poke around.

Comment 2

[Wil Clouser [:clouserw]]

Yeah, I filed this yesterday in mid-meeting because we needed a place holder.  Basically this is about setting up, at a minimum, the backend of groups.  So, right now we have 2 tables: groups and groups_users.  There are some standard functions in the groups model for getting names and membership stuff, but there are also two files outside of it; both components:  simple_auth.php and simple_acl.php.

When we create a group we give it a permissions flag (something like editors:*) which says what actions can be performed by those users.  simple_acl is what checks the current user against that flag.  You can find documentation on the permissions at https://wiki.mozilla.org/Update:Remora_Permissions

For this bug I'm looking for group CRUD, some kind of ACLs (either a django version or a duplicate of simple_acl), and an easy way to check permissions in the code with the ACLs - probably one or more decorators.  And then documentation for how to do it. :)

Comment 3

[Jeff Balogh (:jbalogh)]

I added the admin crud in http://github.com/jbalogh/zamboni/commit/3365a35eb46a0a82de19a15b650a886043675699

Comment 4

[Dave Dash [:davedash, :dd] (assign all bugs to mbrandt)]

/davedash/zamboni/tree/538276-simple-acl shouldn't get approved until bug 539108 is resolved.

Comment 5

[Dave Dash [:davedash, :dd] (assign all bugs to mbrandt)]

rebased with master