TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2025-02-28 23:37:23 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: grant "policy.read" to every role (label and privacy policy necessary in console) (#2089)

Browse Source
This commit is contained in:
Livio Amstutz 2021-07-28 14:14:51 +02:00 committed by GitHub
parent bd8133aedd
commit fb06aed238
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
cmd/zitadel/authz.yaml
View File

@ -175,11 +175,13 @@ InternalAuthZ:
- Role: 'ORG_PROJECT_CREATOR' - Role: 'ORG_PROJECT_CREATOR'
Permissions: Permissions:
- "user.global.read" - "user.global.read"
- "policy.read"
- "project.read:self" - "project.read:self"
- "project.create" - "project.create"
- Role: 'PROJECT_OWNER' - Role: 'PROJECT_OWNER'
Permissions: Permissions:
- "org.global.read" - "org.global.read"
- "policy.read"
- "project.read" - "project.read"
- "project.write" - "project.write"
- "project.delete" - "project.delete"
@ -206,6 +208,7 @@ InternalAuthZ:
- "user.membership.read" - "user.membership.read"
- Role: 'PROJECT_OWNER_VIEWER' - Role: 'PROJECT_OWNER_VIEWER'
Permissions: Permissions:
- "policy.read"
- "project.read" - "project.read"
- "project.member.read" - "project.member.read"
- "project.role.read" - "project.role.read"
@ -219,6 +222,7 @@ InternalAuthZ:
- Role: 'PROJECT_OWNER_GLOBAL' - Role: 'PROJECT_OWNER_GLOBAL'
Permissions: Permissions:
- "org.global.read" - "org.global.read"
- "policy.read"
- "project.read" - "project.read"
- "project.write" - "project.write"
- "project.delete" - "project.delete"
@ -238,6 +242,7 @@ InternalAuthZ:
- "user.membership.read" - "user.membership.read"
- Role: 'PROJECT_OWNER_VIEWER_GLOBAL' - Role: 'PROJECT_OWNER_VIEWER_GLOBAL'
Permissions: Permissions:
- "policy.read"
- "project.read" - "project.read"
- "project.member.read" - "project.member.read"
- "project.role.read" - "project.role.read"
@ -249,6 +254,7 @@ InternalAuthZ:
- "user.membership.read" - "user.membership.read"
- Role: 'PROJECT_GRANT_OWNER' - Role: 'PROJECT_GRANT_OWNER'
Permissions: Permissions:
- "policy.read"
- "org.global.read" - "org.global.read"
- "project.read" - "project.read"
- "project.grant.read" - "project.grant.read"
@ -263,6 +269,7 @@ InternalAuthZ:
- "user.membership.read" - "user.membership.read"
- Role: 'PROJECT_GRANT_OWNER_VIEWER' - Role: 'PROJECT_GRANT_OWNER_VIEWER'
Permissions: Permissions:
- "policy.read"
- "project.read" - "project.read"
- "project.grant.read" - "project.grant.read"
- "project.grant.member.read" - "project.grant.member.read"