wiki:SecureTicketsPlugin

Version 1 (modified by robguttman, 4 years ago) (diff)

New hack SecureTicketsPlugin, created by robguttman

Adds ticket security policy based on component

Description

This plugin was heavily inspired by cboos' vulnerability tickets policy plugin.

The authz policy mechanism provides fine-grained permissions for wiki pages. This plugin attempts to provide fine-grained permissions for tickets segmented by component. Specifically, unless a user has SECURE_TICKET_VIEW permissions, they will only be able to see tickets of public components.

Bugs/Feature Requests

Existing bugs and feature requests for SecureTicketsPlugin are here.

If you have any issues, create a new ticket.

Download

Download the zipped source from here.

Source

You can check out SecureTicketsPlugin from here using Subversion, or browse the source with Trac.

Example

An example is if you have a customer account team who create and need full access to tickets with a 'customer' component but should not have access to any other tickets. The trac.ini file would look like this:

[components]
securetickets.* = enabled

...

[securetickets]
public_components = customer

...

[trac]
permission_policies = SecureTicketsPolicy, DefaultPermissionPolicy, LegacyAttachmentPolicy

Recent Changes

[14028] by rjollos on 2014-07-25 13:32:07
Added license headers and text. Refs #11832.
[14024] by rjollos on 2014-07-25 13:15:58
Removed empty directory.
[13991] by rjollos on 2014-06-22 11:47:31
Indentation and whitespace cleanup using reindent.py.

Author/Contributors

Author: robguttman
Maintainer: robguttman
Contributors: