Feature #139


per host authorization for making changes.

Added by Nigel Kersten over 14 years ago. Updated over 12 years ago.

Users, Roles and Permissions
Target version:
Fixed in Releases:
Found in Releases:


Another wide ranging feature request:

We have a large and distributed operational team, and we like to be able to let users manage their own servers.
However, we do not wish to allow users to manage their own desktops and laptops in terms of specifying additional classes etc.

Ideally we could have some kind of rule based authorization system that could make use of host fact values, that would allow us to do this sort of thing, written in pre-caffeine-pseudo-code.

if $admin_user is in LDAP group "foo" and $machine_type "desktop": allow administration

if $admin_user is in $machine_owners and $machine_type "server": allow administration

Even more ideally, users would have two views in Foreman, one to simply view all hosts, and the other to view all hosts that they had administrative rights over.

Related issues 3 (0 open3 closed)

Related to Foreman - Feature #73: add support for user groupsClosedPaul Kelly03/04/201003/04/2010Actions
Related to Foreman - Feature #170: Create a usergroup implementationClosedPaul Kelly03/03/2010Actions
Blocked by Foreman - Feature #366: Provide a basic authorization infrastructureClosedPaul Kelly08/26/2010Actions
Actions #1

Updated by Ohad Levy almost 14 years ago

  • Assignee set to Paul Kelly
  • Target version set to 0.1-6
Actions #2

Updated by Paul Kelly almost 14 years ago

  • Category set to Users, Roles and Permissions
  • Status changed from New to Assigned
  • % Done changed from 0 to 60

In the process of porting the Redmine security implementation over to Foreman. Thanks, and respect, go to Eric Davis, Jean-Philippe Lang, and the rest of the team over on the Redmine project.

Actions #3

Updated by Ohad Levy over 13 years ago

  • Target version changed from 0.1-6 to 0.2
Actions #5

Updated by Ohad Levy about 13 years ago

  • Target version deleted (0.2)
Actions #6

Updated by Ohad Levy over 12 years ago

  • Status changed from Assigned to Closed

I think this has been resolved long ago.. closing


Also available in: Atom PDF