about summary refs log tree commit diff
path: root/gn_auth/auth/authorisation/resources
AgeCommit message (Collapse)Author
12 daysDeprecate functions which duplicate those in gn-libs.Frederick Muriuki Muriithi
The `gn_auth.auth.authorisation.resources.checks.can_[edit/delete]` functions duplicate the utility provided by similar named functions in the `gn_libs.privileges.resources` package. These ones are, thus, deprecated in favour of the gn-libs ones.
12 daysDelete unused function.Frederick Muriuki Muriithi
The `gn_auth.auth.authorisation.resources.checks.can_view` function is no longer used in this code base. It can be safely removed.
2026-05-18Update call to `can_edit` to separate resource and system privilegesFrederick Muriuki Muriithi
2026-05-01Ensure ALL users with access to the resource are actually listed.Frederick Muriuki Muriithi
2026-04-23Remove debug artifact.Frederick Muriuki Muriithi
2026-04-23Improve error messages.Frederick Muriuki Muriithi
2026-04-23Fix minor linting bugs.Frederick Muriuki Muriithi
2026-04-23Allow anonymous users "public-view" privileges.Frederick Muriuki Muriithi
The default system-level privilege is the "public-view", i.e. the users can view basic details about the Genenetwork system. If no authorisation is provided when accessing the /auth/system/roles endpoint, return the default role/privilege.
2026-04-20Implement editing resource name.Frederick Muriuki Muriithi
2026-04-20Use module-level logger rather than application's logger.Frederick Muriuki Muriithi
2026-04-15Do not grant sysadmins direct access at resource creation.Frederick Muriuki Muriithi
2026-04-08user resources: Add a text filter for further filtering.Frederick Muriuki Muriithi
2026-04-08user resources: return total with filtered records.Frederick Muriuki Muriithi
Return a count of the total number of resources that the user has access to even if we are only interested in a few of the records.
2026-04-07Update code to handle resource creators and creation times.Frederick Muriuki Muriithi
2026-04-07Add creator and creation time tracking to Resources.Frederick Muriuki Muriithi
2026-04-02Update resource creation: Add tracking informationFrederick Muriuki Muriithi
Add the creator of the resource and the time the resource was created.
2026-03-26Update edit access: use more flexible 'can_edit(...)' function.Frederick Muriuki Muriithi
2026-02-10Bug: Fix import path.Frederick Muriuki Muriithi
2026-02-10Authorisation Check: New function to check user has edit access.Frederick Muriuki Muriithi
2026-02-10Authorisation Check: New function to check user has view access.Frederick Muriuki Muriithi
2026-02-10Use Auth function that checks for delete access.Frederick Muriuki Muriithi
2026-02-10Authorisation Check: New function to check user has delete access.Frederick Muriuki Muriithi
2026-02-06Replace hard-coded email check with check against privilegesFrederick Muriuki Muriithi
Fix the check: rather than using a hard-coded email to check for authorisation, we instead check against the privileges the user has on the resource, or whether they have global privileges allowing them to act on any data.
2025-12-29`system_resource(...)` function takes either connection or cursorFrederick Muriuki Muriithi
Refactor to allow the `gn_auth.auth.authorisation.resources.system.models.system_resource` function to take either a database connection or cursor and use that to retrieve the "system resource".
2025-12-29`create_resource(...)` function takes either connection or cursorFrederick Muriuki Muriithi
Refactor to allow the `gn_auth.auth.authorisation.resources.models.create_resource` function to take either a database connection or cursor to perform its tasks.
2025-12-03Improve error messaging.Frederick Muriuki Muriithi
2025-07-31Clean up data on group deletion.Frederick Muriuki Muriithi
2025-07-31Re-grant access to sysadmin, in case they're removed as group memberFrederick Muriuki Muriithi
2025-07-31Revoke roles a user has on group when they are removed as a member.Frederick Muriuki Muriithi
2025-07-31Check for data inconsistency.Frederick Muriuki Muriithi
2025-07-31Prevent error in case sysadmin user already has accessFrederick Muriuki Muriithi
In case any sysadmin user has access to the resource, we do not want the query failing for other sysadmins.
2025-07-31Grant sysadmins access to user group when its created.Frederick Muriuki Muriithi
2025-07-31Delete a group.Frederick Muriuki Muriithi
2025-07-31Break circular dependency - move utility function to module of use.Frederick Muriuki Muriithi
2025-07-31Add function to retrieve inbredset-group data.Frederick Muriuki Muriithi
2025-07-31Fix query to remove user from group.Frederick Muriuki Muriithi
2025-07-30Provide endpoint to remove a group member.Frederick Muriuki Muriithi
2025-07-30Fix linting errors and typos.Frederick Muriuki Muriithi
2025-07-30Call the correct function.Frederick Muriuki Muriithi
2025-07-30Remove a user from a group as a member.Frederick Muriuki Muriithi
2025-07-30Fetch resource object that wraps the group for authorisationsFrederick Muriuki Muriithi
2025-07-30Don't allow user to create a group when they are a member of anotherFrederick Muriuki Muriithi
When user is made a member of a group, we revoke their ability to create a new group.
2025-07-30Grant user `system-administrator` role on all resourcesFrederick Muriuki Muriithi
During promotion of a user to system admin, grant the user `system-administrator` role on all resources in the system.
2025-07-29Fix issues caught by the type-checker.Frederick Muriuki Muriithi
2025-07-29Fix issues caught by code-linter.Frederick Muriuki Muriithi
2025-07-29Actually delete a resource.Frederick Muriuki Muriithi
2025-07-29Grant sysadmins access to the resource when created.Frederick Muriuki Muriithi
2025-07-29Add function to delete a resource.Frederick Muriuki Muriithi
2025-07-29Add new route for consistency.Frederick Muriuki Muriithi
2025-07-29Refactor: Replace old auth-checking function with spec-based one.Frederick Muriuki Muriithi
generated by cgit-pink 1.4.1 (git 2.36.1) at 2026-06-03 02:25:03 +0000