Add support for events inheriting ACL from its series (via different merge modes) #1037
Labels
area:auth
Authentication and Authorization
area:backend
Everything backend related
area:database
The Tobira database
area:opencast
The Opencast side
area:sync
Syncing with an Opencast instance
kind:new-feature
A new feature
needs:research
Needs research as we are lacking knowledge to make an informed decision
We procrastinated this for a long time but we should have support for this ACL mechanism. It's described in these docs.
The way I see it, we have to implement the logic for all possible merge modes. Otherwise we cannot correctly perform authorization as Opencast specifies it. The logic is fairly straight forward, but we have to see whether we "implement it at query time" by making SQL queries and the Meili query more complex, or whether we have a cached "merged" ACL somewhere.
And how do we get the current merge mode? We can force admins to configure it in Tobira, duplicating that value. Or we could somehow transfer it from Opencast to Tobira. Is there an API already maybe?
Random thoughts of mine:
The text was updated successfully, but these errors were encountered: