Basic Namespace Role CRUD #3

New issue

Closed

opened 2025-11-18 08:09:18 -06:00 by digimint · 1 comment

digimint commented 2025-11-18 08:09:18 -06:00

Owner

Copy link

• A user should be able to create a new role in any namespace in which they are permitted to do so
• A user should be able to edit the name of roles with lower priority than their own if they have the EDIT_ROLES permission
• A user should be able to allow, deny, or clear any permission they have for any role with lower priority than their own if they also have the EDIT_ROLES permission
• A user should be able to re-prioritize roles with lower priority than their own if they have the EDIT_ROLES permission
• A user should be able to add or remove roles with lower priority than their own to other users if they have the EDIT_ROLES permission
• A user should be able to delete roles with lower priority than their own if they have the EDIT_ROLES permission

Caveats

• A user should not be able to remove a role from themselves or remove permissions from a role if it would result in no user having ADMINISTRATE permissions on the namespace.
• If the only user with ADMINISTRATE permission on a namespace leaves that namespace, then they must choose another user to grant the ADMINISTRATE permission to.

- [x] A user should be able to create a new role in any namespace in which they are permitted to do so - [x] A user should be able to edit the name of roles with lower priority than their own if they have the `EDIT_ROLES` permission - [x] A user should be able to allow, deny, or clear any permission they have for any role with lower priority than their own if they also have the `EDIT_ROLES` permission - [x] A user should be able to re-prioritize roles with lower priority than their own if they have the `EDIT_ROLES` permission - [x] A user should be able to add or remove roles with lower priority than their own to other users if they have the `EDIT_ROLES` permission - [x] A user should be able to delete roles with lower priority than their own if they have the `EDIT_ROLES` permission ## Caveats - [ ] A user **should not** be able to remove a role from themselves or remove permissions from a role if it would result in no user having `ADMINISTRATE` permissions on the namespace. - [ ] If the only user with `ADMINISTRATE` permission on a namespace leaves that namespace, then they must choose another user to grant the `ADMINISTRATE` permission to.

digimint added this to the Taskflower v0.1.0 project 2025-11-18 08:09:18 -06:00

digimint referenced this issue from a commit 2025-11-20 06:20:59 -06:00

CSS improvements and partial implementation for #3

digimint referenced this issue 2025-11-20 09:00:56 -06:00

Namespace Invites #13

digimint commented 2025-11-20 11:01:12 -06:00

Author

Owner

Copy link

Gonna save the caveats for another time. The rest is finished.

Gonna save the caveats for another time. The rest is finished.

digimint referenced this issue from a commit 2025-11-20 11:02:01 -06:00

Finish namespace role implementation

digimint closed this issue 2025-11-20 11:02:01 -06:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

No results found.

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Taskflower v0.1.0

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: digimint/taskflower#3

No description provided.