Implement access control

[FOCA](https://github.com/elixir-cloud-aai/foca) now adds support for [Casbin](https://casbin.org/)-based access control on the development branch. Configure access control for the ELIXIR Cloud Registry in the following way:

- Anyone has read permissions (i.e., they can access all `GET` endpoints)
- Any _authenticated_ user can create (`POST`) resources (i.e., add services); they may be able to use `PUT` as well, as long as a resource with that ID does not yet exist
- After creating a resource, a user becomes a resource `Owner`
- Resource `Owner`s can edit (`PUT`) and delete (`DELETE`) existing resources
- Resource `Owner`s can change the permissions of other others: in particular, they can make other users `Owner`s or `Maintainer`s
- Resource `Maintainer`s can edit (`PUT`) but not delete (`DELETE`) existing resources

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Implement access control #22

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Implement access control #22

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions