feat: create user roles and permissions page #222
Conversation
kevinsmaster5
force-pushed
the
feat-create-user-roles-permission-page
branch
from
f0a8c5b to
0b5f872
Compare
apburnes
left a comment
apburnes
left a comment
There was a problem hiding this comment.
This looks good and adds good context for site managers. The main content updates need to be around the Bot role. A bot has read only access on a per site basis. I tried to flag all the instances the bot role goes beyond read only.
Also, the page renders without being logged into the dashboard. Let's update that to be behind authentication.
| Capabilities | ||
| </h4> | ||
| <ul className="margin-top-1"> | ||
| <li>Publish and update content programmatically.</li> |
There was a problem hiding this comment.
The bot role has read only access. It cannot update or delete content
| </h4> | ||
| <ul className="margin-top-1"> | ||
| <li>Publish and update content programmatically.</li> | ||
| <li>Run automated jobs or deploy pipelines.</li> |
There was a problem hiding this comment.
Run automated jobs or publish the production site
| <td><Check /></td> | ||
| <td><Check /></td> | ||
| <td><Check /></td> | ||
| <td>Users and Bots can create content;<br/> |
There was a problem hiding this comment.
| <td>Users and Bots can create content;<br/> | |
| <td>Users can create content;<br/> |
| <td><Check /></td> | ||
| <td><Check /></td> | ||
| <td><Check /></td> | ||
| <td>Bots and Managers can update<br/>published content; Users only drafts</td> |
There was a problem hiding this comment.
Managers can update <br/>published content; Users only update content drafts
| <td><X /></td> | ||
| <td><Check /></td> | ||
| <td><Check /></td> | ||
| <td>Bot deletion limited to automation routines</td> |
There was a problem hiding this comment.
Managers can delete content
| <td>Delete content</td> | ||
| <td><X /></td> | ||
| <td><Check /></td> | ||
| <td><Check /></td> |
There was a problem hiding this comment.
Bots can't delete
| <td><Check /></td> | |
| <td><X /></td> |
| <td>Create or modify content via API</td> | ||
| <td><X /></td> | ||
| <td><X /></td> | ||
| <td><Check /></td> |
There was a problem hiding this comment.
| <td><Check /></td> | |
| <td><X /></td> |
| <td>Trigger CI/CD workflows</td> | ||
| <td><X /></td> | ||
| <td><X /></td> | ||
| <td><Check /></td> |
There was a problem hiding this comment.
| <td><Check /></td> | |
| <td><X /></td> |
| <td>Run scheduled publish tasks</td> | ||
| <td><X /></td> | ||
| <td><X /></td> | ||
| <td><Check /></td> |
There was a problem hiding this comment.
| <td><Check /></td> | |
| <td><X /></td> |
| <td>bot</td> | ||
| <td>api</td> | ||
| <td>access</td> | ||
| <td><Check /></td> |
There was a problem hiding this comment.
| <td><Check /></td> | |
| <td><X /></td> |
apburnes
left a comment
apburnes
left a comment
There was a problem hiding this comment.
Thanks for the update! This looks good to go.
chore: enable breadcrumb workaround and title meta fix: remove unneeded whitepace rule, add missing table text fix: revise slug to sites roles and permissions page feat: add Roles and Permissions to User collection description fix: accomodate grid-col for mobile fix: unescaped apostrophe fix: gate the page to logged in users, correct mainly bot-oriented table info
kevinsmaster5
force-pushed
the
feat-create-user-roles-permission-page
branch
from
e694b54 to
89b7cb9
Compare
Squashed the commits 👍 |
Closes #155
Changes proposed in this pull request:
Things to check
INFOand debugging statements are written withlog.debugor similar, then they won't be written to the otput, which can prevent unintentional leaks of sensitive data.Security considerations
There are no security concerns