Versions Compared

Old Version 4

changes.mady.by.user s.m.y Altamash

Saved on

compared with

New Version 5

changes.mady.by.user s.m.y Altamash

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

These play a vital role in providing permissions for the consumers and they need to be taken special care. We have categorized ACLs in entities and roles. Each entity will have SuperAdmin, Admin, Create, Update, Access roles. Like for instance org API’s the below permissions.

ENTITY

Reason For ACL Creation

ROLE

app

application configuration related APIS

SuperAdmin - [ Super Natural Powers ]
Often given to users internal to organisation and never given to machines.

content

content related apis

Admin - [ Audit, vaildate, flag, retires, block ]

course

course and batch related apis

Update - [ Update, Sync ]

data

data related apis

Access - [ Get, List, Read, Enroll ]

dialcode

dial related apis

Create - [ Create ]

channel

channel related apis

Temp - [temporary ACL for API's which are kept for legacy purpose and will be removed in a period of 6 months]

sso

echo api for sso authentication

kongConsumer

onboard consumers, kong consumer apis

location

location apis

mobile

mobile app, mobile device apis

mobileOpenRAP

openrap apis

mobileTeacherAid

teacheraid apis

note

note related apis

org

org, tenants related apis

experiment

experiment related apis

user

user related APIs

framework

used for framework and master category and term apis

page

page section related apis

announcement

announcement related apis

device

device profile or device register apis

badge

badge related apis

telemetry

telemetry related apis

assertion

assertion related apis

license

neo4j license and other license related apis

object

object related apis

form

forms related apis

plugin

plugin related apis

certificate

certificate related apis

itemSet

itemset related apis

desktop

desktop app, desktop device apis

for instance we have createOrg API as mentioned in this document and it clearly belongs to Entityorg” and ROLE as create so all our For instance org API’s will have the ACL’s as per the standards mentioned below Entity and role mapping as described in the above table. If there is any need for new entities then it can be added on demand.below table.

ORG APIS

PERMISSIONS

orgSuperAdmin

Bulk Upload/Delete of organisations

orgAdmin

Add/Remove member from organisation

orgCreate

create organisation

orgUpdate

Update organisation details

orgAccess

read organisation details

CREATING CONSUMERS:

As mentioned Above we have 3 types of consumers, we can create new consumers by updating the variable in the private inventory as mentioned below.

...