Spotfire Ideas Portal
Add a new idea Subscribe
Status Implemented
Product Spotfire Data Virtualization
Categories management
Created by Guest
Created on Feb 23, 2018

RELATED IDEAS

Authorization via permissions and roles

TDV uses a combination of resource-based privileges and resource-agnostic rights, but has no ability to explicitly authorize particular operations.  So if one wants to allow a user to perform backup operations, but not to inspect the contents of repository metadata, there is no combination of rights and privileges that will allow that.  Thus, under the current authorization system, it's easy to wind up in situations where users are given excess authorization.

To address this, TDV could have a set of named permissions, each authorizing a particular operation on the server.  Users should be able to bundle up groups of these permissions into explicitly assignable roles (as well as having some roles come pre-defined).  Permissions (and thus, roles) should also be able to be constrained by resources, as well.  Thus, for example, a developer might be given full access to define artifacts within a particular folder (and its subfolders) within the repository, but might have no authorization to change anything outside of that, nor to publish any resources he or she creates.

  • Attach files
This document (including, without limitation, any product roadmap or statement of direction data) illustrates the planned testing, release and availability dates for Spotfire products and services. It is for informational purposes only and its contents are subject to change without notice. Planning to implement - generally 6-12 months out. Likely to Implement - generally means 12-18 months out. Copyright © 2014-2023 Cloud Software Group, Inc. All Rights Reserved. Cloud Software Group, Inc. ("Company") follows the EU Standard Contractual Clauses as per the Company's Data Processing Agreement. Terms of Use | Privacy Policy | Trademarks | Patents | Contact Us