Add a 'system:system-wide:data:view' privilege.

author: Frederick Muriuki Muriithi 2026-04-28 11:49:45 -0500
committer: Frederick Muriuki Muriithi 2026-04-28 11:49:45 -0500
commit: 8b308a83b6fb59df324af60bafc57ad8df8ab195 (patch)
tree: 86b3144b212d236d164354b7cc9affbcd113e1cb
parent: eae294951f5dc1faab5f451a8926f94f0778e128 (diff)
download: gn-auth-8b308a83b6fb59df324af60bafc57ad8df8ab195.tar.gz
1 files changed, 19 insertions, 0 deletions
diff --git a/migrations/auth/20260428_01_Tak6O-new-privilege-system-system-wide-data-view.py b/migrations/auth/20260428_01_Tak6O-new-privilege-system-system-wide-data-view.py
new file mode 100644
index 0000000..2dddc56
--- /dev/null
+++ b/migrations/auth/20260428_01_Tak6O-new-privilege-system-system-wide-data-view.py
@@ -0,0 +1,19 @@
+"""
+New privilege: system:system-wide:data:view
+"""
+
+from yoyo import step
+
+__depends__ = {'20260402_01_Bf8nm-add-user-and-time-tracking-to-resources-table'}
+
+steps = [
+    step(
+        """
+        INSERT INTO privileges(privilege_id, privilege_description)
+        VALUES('system:system-wide:data:view',
+        'A user with this privilege can view any data on the entire system.')
+        """,
+        """
+        DELETE FROM privileges WHERE privilege_id='system:system-wide:data:view'
+        """)
+]
author	Frederick Muriuki Muriithi	2026-04-28 11:49:45 -0500
committer	Frederick Muriuki Muriithi	2026-04-28 11:49:45 -0500
commit	8b308a83b6fb59df324af60bafc57ad8df8ab195 (patch)
tree	86b3144b212d236d164354b7cc9affbcd113e1cb
parent	eae294951f5dc1faab5f451a8926f94f0778e128 (diff)
download	gn-auth-8b308a83b6fb59df324af60bafc57ad8df8ab195.tar.gz