Edgewall Software
Modify

Opened 18 years ago

Last modified 9 years ago

#4827 new enhancement

TracPermissions to access WebAdmin should be more fine-grained

Reported by: nick+trac@… Owned by:
Priority: low Milestone: next-major-releases
Component: admin/web Version:
Severity: normal Keywords: component permissions
Cc: Branch:
Release Notes:
API Changes:
Internal Changes:

Description

I stated the problem broadly, but really there is one simple set of permission that would help me out with 95% of my need:

COMPONENT_CREATE, COMPONENT_MODIFY (etc): access to create/modify (etc) components via WebAdmin, but no other part of WebAdmin.

Currently, I am giving far more users TRAC_ADMIN permissions than I am comfortable with, just so they can CRUD components without needing to bother an admin.

Attachments (0)

Change History (2)

comment:1 by Christian Boos, 14 years ago

Keywords: component permissions added
Owner: Christopher Lenz removed
Priority: highlow

See TracDev/Proposals/EvenFinerGrainedPermissions

comment:2 by Ryan J Ollos, 9 years ago

Confirmed that the following rule works correctly in Trac 1.0.6: 

[admin:ticket/components]
* = TICKET_ADMIN

Replace the wildcard * with more specific user and group names, as described on the TracFineGrainedPermissions page.

The COMPONENT_* permissions may be added when #1233 is implemented.

Last edited 9 years ago by Ryan J Ollos (previous) (diff)

Modify Ticket

Change Properties
Set your email in Preferences
Action
as new The ticket will remain with no owner.
The ticket will be disowned.
as The resolution will be set. Next status will be 'closed'.
The owner will be changed from (none) to anonymous. Next status will be 'assigned'.

Add Comment
E-mail address and name can be saved in the Preferences .
AttachmentsDescription
 
Note: See TracTickets for help on using tickets.