wiki:SecureTicketsPlugin

Version 2 (modified by robguttman, 6 years ago) (diff)

--

Adds ticket security policy based on component

Description

This plugin was heavily inspired by cboos' vulnerability tickets policy plugin.

The authz policy mechanism provides fine-grained permissions for wiki pages. This plugin attempts to provide fine-grained permissions for tickets segmented by component. Specifically, unless a user has SECURE_TICKET_VIEW permissions, they will only be able to see tickets of public components.

Bugs/Feature Requests

Existing bugs and feature requests for SecureTicketsPlugin are here.

If you have any issues, create a new ticket.

Download

Download the zipped source from [download:secureticketsplugin here].

Source

You can check out SecureTicketsPlugin from here using Subversion, or browse the source with Trac.

Example

An example is if you have a customer account team that creates and needs full access to tickets with a 'customer' component but should not have access to any other tickets. The trac.ini file would look like this:

[components]
securetickets.* = enabled

...

[securetickets]
public_components = customer

...

[trac]
permission_policies = SecureTicketsPolicy, DefaultPermissionPolicy, LegacyAttachmentPolicy

Recent Changes

14028 by rjollos on 2014-07-25 13:32:07
Added license headers and text. Refs #11832.
14024 by rjollos on 2014-07-25 13:15:58
Removed empty directory.
13991 by rjollos on 2014-06-22 11:47:31
1.0.1: Fix indentation and cleanup whitespace using reindent.py
(more)

Author/Contributors

Author: robguttman
Maintainer: robguttman
Contributors: