local-it/mitgliederverwaltung
2
3
Fork 0
Code Issues 51 Pull requests 13 Projects 1 Releases Packages 1 Activity Actions

[FEATURE]: Define implementation plan for roles and permissions #151

New issue
Closed
opened 2025-09-04 13:29:12 +02:00 by carla · 2 comments
carla commented 2025-09-04 13:29:12 +02:00
Owner
Copy link

Description

As devs we want to have a clear plan of how to implement the roles concepts and check if anything is missing. The UI will be part of the "Admin settings" part.

Acceptance criteria

  • We know that the data model fits the requirements regarding the roles
  • We have a clear overview of the roles and permissions
  • We know which ressources / domains we need in Ash
  • We know the default role
  • We know the relations between the Ash ressources
  • No actual coding happens in this issue
  • We have a fitting technical approach that fulfills our theoretical requirements from the planning
## Description As devs we want to have a clear plan of how to implement the roles concepts and check if anything is missing. The UI will be part of the "Admin settings" part. ## Acceptance criteria - [x] We know that the data model fits the requirements regarding the roles - [x] We have a clear overview of the roles and permissions - [ ] We know which ressources / domains we need in Ash - [x] We know the default role - [ ] We know the relations between the Ash ressources - [ ] No actual coding happens in this issue - [ ] We have a fitting technical approach that fulfills our theoretical requirements from the [planning](https://pad.local-it.org/rzPwyKBnQLqn7lc2D3IJEA?both)
carla added this to the We have different roles and permissions milestone 2025-09-04 13:29:12 +02:00
carla added the
medium priority
M
 labels 2025-09-04 13:29:12 +02:00
carla self-assigned this 2025-11-03 14:21:37 +01:00
carla changed reference from main to feature/151_roles_permissions_docs 2025-11-03 14:33:42 +01:00
carla commented 2025-11-03 14:49:48 +01:00
Author
Owner
Copy link

These two aspects are handled in other issues:

  • We know which ressources / domains we need in Ash
  • We know the relations between the Ash ressources

Permission Implementation: #190
Role Implementation: #191

These two aspects are handled in other issues: - [ ] We know which ressources / domains we need in Ash - [ ] We know the relations between the Ash ressources Permission Implementation: https://git.local-it.org/local-it/mitgliederverwaltung/issues/190 Role Implementation: https://git.local-it.org/local-it/mitgliederverwaltung/issues/191
simon commented 2025-11-06 12:53:31 +01:00
Owner
Copy link

@moritz and I had a talk on the concept again and added some notes to the hededoc (linked in OP now)

Concept on meta level seems fine, technical implementation still unclear. Permission model needs to added on top of ash resources. Afterwards we can think of vertical cuts: handle permissions for members, custom fields etc. and for different permission sets and roles in different issues.

Our conclusion on the next step is now:

  • Develop different technical concepts with support of cursor and check in with team again

Afterwards we want to start implementing on a fine-granular approach without creating too big "implement everything" issues

@moritz and I had a talk on the concept again and added some notes to the hededoc (linked in OP now) > Concept on meta level seems fine, technical implementation still unclear. Permission model needs to added on top of ash resources. Afterwards we can think of vertical cuts: handle permissions for members, custom fields etc. and for different permission sets and roles in different issues. Our conclusion on the next step is now: - [ ] Develop different technical concepts with support of cursor and check in with team again Afterwards we want to start implementing on a fine-granular approach without creating too big "implement everything" issues
👍 1
moritz added this to the Sprint 8 - 23.10 - 20.11 project 2025-11-06 12:54:22 +01:00
moritz self-assigned this 2025-11-06 12:54:44 +01:00
carla was unassigned by moritz 2025-11-06 12:54:44 +01:00
carla closed this issue 2025-11-18 08:50:32 +01:00
Sign in to join this conversation.
feature/151_roles_permissions_docs
Branches Tags
Clear current reference
main
renovate/renovate-renovate-42.x
renovate/mix-dependencies
perform-migration-on-startup
feature/196_search_custom_fields
feature/220_ui_issues_2
sidebar
renovate/major-postgres
feature/223_member_checkbox
renovate/major-mix-dependencies
renovate/postgres
renovate/ghcr.io-sebadob-rauthy-0.x
persist-sort-order
docs/210_payment-concept
feature/151_roles_permissions_docs
manual_renovate_update
feature/#158-polish-README
feature/128_playwright_a11y_test
feature/119_member_user_relation_refactor
feature/119_user_as_member
feature/backpex-migration
feature/backpex_translation
feature/39_account_ressource
feature/74_memberfields
validation
feature/36_add_primerlive
Clear current reference
No results found.
Labels
Clear labels   
bug

Something is not working

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
help wanted

Need some help

  
high priority

   
invalid

Something is wrong

  
L

5 h

  
low priority

   
M

3 h

  
medium priority

   
needs refinement

   
question

More information is needed

  
S

1 h

  
UX research

   
wontfix

This won't be fixed

No labels
bug
duplicate
enhancement
help wanted
high priority
invalid
L
low priority
M
medium priority
needs refinement
question
S
UX research
wontfix
Milestone
Clear milestone
No items
No milestone
We have different roles and permissions
Projects
Clear projects
No items
No project
Sprint 8 - 23.10 - 20.11
Assignees
Clear assignees
No assignees
moritz
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: local-it/mitgliederverwaltung#151
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?