summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--issues/gn-auth/problems-with-roles.gmi3
1 files changed, 3 insertions, 0 deletions
diff --git a/issues/gn-auth/problems-with-roles.gmi b/issues/gn-auth/problems-with-roles.gmi
index 3a792fe..f34a855 100644
--- a/issues/gn-auth/problems-with-roles.gmi
+++ b/issues/gn-auth/problems-with-roles.gmi
@@ -25,7 +25,10 @@ The implementation should instead, tie the roles to the specific resource, rathe
* [x] Remove the `….create_action` function: raise exception when used
* [x] Remove the "Roles" page on the UI
+* [ ] migration: Remove `group:role:[create|delete|edit]-role` privileges from `group-admin` role
+* [ ] migration: Add `resource:role:[create|delete|edit]-role` privileges to `resource-owner` role
* [ ] Create a new "Roles" section on the "Resource-View" page, or a separate "Resource-Roles" page to handle the management of that resource's roles
+* [ ] Ensure user can only assign roles they have created - maybe?
### Fixes