From 17f3794a0c4aa417aed8eaf489d8b9153b5e6f3c Mon Sep 17 00:00:00 2001 From: Janakiram G Date: Fri, 14 Feb 2025 16:03:02 +0530 Subject: [PATCH 1/3] Add CRUD AuthPolicy for Form and Response entities --- .../policies/bootstrap_entity_policies.json | 78 +++++++++++++++++++ 1 file changed, 78 insertions(+) diff --git a/addons/policies/bootstrap_entity_policies.json b/addons/policies/bootstrap_entity_policies.json index 8b1aaf90f2..4a1dafa693 100644 --- a/addons/policies/bootstrap_entity_policies.json +++ b/addons/policies/bootstrap_entity_policies.json @@ -3517,6 +3517,84 @@ "entity-update-business-metadata" ] } + }, + { + "typeName": "AuthPolicy", + "attributes": + { + "name": "CRUD_FORMS", + "qualifiedName": "CRUD_FORM_ENTITIES", + "description": "Allows user to perform crud operation on Form assets.", + "policyCategory": "bootstrap", + "policySubCategory": "default", + "policyServiceName": "atlas", + "policyType": "allow", + "policyPriority": 0, + "policyUsers": + [], + "policyGroups": + [], + "policyRoles": + [ + "$admin", + "$api-token-default-access" + ], + "policyResourceCategory": "ENTITY", + "isPolicyEnabled": true, + "policyResources": + [ + "entity-type:Form", + "entity-classification:*", + "entity:*" + ], + "policyActions": + [ + "entity-create", + "entity-update", + "entity-delete", + "entity-read" + ] + } + }, + { + "typeName": "AuthPolicy", + "attributes": + { + "name": "CRUD_RESPONSES", + "qualifiedName": "CRUD_RESPONSE_ENTITIES", + "description": "Allows user to perform crud operation on Response assets.", + "policyCategory": "bootstrap", + "policySubCategory": "default", + "policyServiceName": "atlas", + "policyType": "allow", + "policyPriority": 0, + "policyUsers": + [], + "policyGroups": + [], + "policyRoles": + [ + "$admin", + "$member", + "$guest", + "$api-token-default-access" + ], + "policyResourceCategory": "ENTITY", + "isPolicyEnabled": true, + "policyResources": + [ + "entity-type:Response", + "entity-classification:*", + "entity:*" + ], + "policyActions": + [ + "entity-create", + "entity-update", + "entity-delete", + "entity-read" + ] + } } ] } From 333515e068f455e70f2e7cb8c14fb3375eefc214 Mon Sep 17 00:00:00 2001 From: Janakiram G Date: Fri, 14 Feb 2025 16:43:01 +0530 Subject: [PATCH 2/3] Separate READ permissions for Forms and allow all users --- .../policies/bootstrap_entity_policies.json | 46 +++++++++++++++++-- 1 file changed, 41 insertions(+), 5 deletions(-) diff --git a/addons/policies/bootstrap_entity_policies.json b/addons/policies/bootstrap_entity_policies.json index 4a1dafa693..240352abfe 100644 --- a/addons/policies/bootstrap_entity_policies.json +++ b/addons/policies/bootstrap_entity_policies.json @@ -3522,9 +3522,46 @@ "typeName": "AuthPolicy", "attributes": { - "name": "CRUD_FORMS", - "qualifiedName": "CRUD_FORM_ENTITIES", - "description": "Allows user to perform crud operation on Form assets.", + "name": "READ_FORMS", + "qualifiedName": "READ_FORM_ENTITIES", + "description": "Allows user to perform read operation on Form assets.", + "policyCategory": "bootstrap", + "policySubCategory": "default", + "policyServiceName": "atlas", + "policyType": "allow", + "policyPriority": 0, + "policyUsers": + [], + "policyGroups": + [], + "policyRoles": + [ + "$admin", + "$member", + "$guest", + "$api-token-default-access" + ], + "policyResourceCategory": "ENTITY", + "isPolicyEnabled": true, + "policyResources": + [ + "entity-type:Form", + "entity-classification:*", + "entity:*" + ], + "policyActions": + [ + "entity-read" + ] + } + }, + { + "typeName": "AuthPolicy", + "attributes": + { + "name": "CUD_FORMS", + "qualifiedName": "CUD_FORM_ENTITIES", + "description": "Allows user to perform cud operation on Form assets.", "policyCategory": "bootstrap", "policySubCategory": "default", "policyServiceName": "atlas", @@ -3551,8 +3588,7 @@ [ "entity-create", "entity-update", - "entity-delete", - "entity-read" + "entity-delete" ] } }, From 95cf2435807404814e7b22916413d766deed6cac Mon Sep 17 00:00:00 2001 From: Janakiram G Date: Fri, 14 Feb 2025 16:45:37 +0530 Subject: [PATCH 3/3] Add build directive --- .github/workflows/maven.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml index fd0ee2465b..821fe57600 100644 --- a/.github/workflows/maven.yml +++ b/.github/workflows/maven.yml @@ -26,8 +26,7 @@ on: - beta - development - master - - taskdg1924 - - taskdg1924deleteprop + - win492beta jobs: build: