-
Notifications
You must be signed in to change notification settings - Fork 34
Permissions
The Permissions are defined by the Development Team of Cryptopus.
In our opinion, the Permissions are given in the best way as they are right now. Take a closer look to understand them better!
There are 3 Roles in general, Admins, Conf Admins and normal Users. Each of them can be member of a team and if so, can edit their team like defined in the Teammembers column.
Admins are automatically Teammembers of any public Team, however Conf Admins are not.
| Admin | Conf Admin | User | Teammember | |
|---|---|---|---|---|
| Create Team pub | X | X? | X | |
| Update Team pub | X | X | ||
| Delete Team pub | X | (X) | empty? | |
| Create Team prv | X | X? | X | |
| Update Team prv | X | |||
| Delete Team prv | X? | (X) | X | |
| Create Group | X | X | ||
| Update Group | X | X | ||
| Delete Group | X | X | ||
| Create Account | X | X | ||
| Move Account | X | X | ||
| Update Account | X | X | ||
| Delete Account | X | X | ||
| Create Item | X | X | ||
| Update Item | X | X | ||
| Delete Item | X | X |
*pub = public
*prv = private
*(X) = only if last Teammember
| Admin | Conf Admin | User | Teammember | |
|---|---|---|---|---|
| Add Teammember pub | X | X | X? | |
| Remove Teammember pub | X | X | ||
| Add Teammember prv | X | |||
| Remove Teammember prv | X | |||
| Add Group pub | X | X | ||
| Remove Group pub | X | X | ||
| Add Group prv | X | |||
| Remove Group prv | X |
| Admin | Conf Admin | |
|---|---|---|
| Create User | X | * |
| Delete User | X | *NA |
| Edit Firstname | X | *NA |
| Edit Lastname | X | *NA |
| Edit Username | X | |
| Edit Password | X | |
| Make Conf Admin | X | |
| Make Admin | X | X |
| Unlock | X | X |
*NA = only if selected User is not Admin
* same as above and User whose LDAP has been deleted
Admins can Update or Delete a public Team even if they're not Teammember of it, however not for private Teams.
Conf-Admin can delete a Team only if he is the last Teammember.
| Admin | Conf Admin | User | |
|---|---|---|---|
| Change Password | X | X | |
| Change own Password | X | X | X |
| Update Settings | X | X | |
| Send Recrypt Requests | X | ||
| Send own Recrypt Requests | X | X | |
| Recieve Recrypt Requests | X | ||
| Handle Recrypt Requests | X | ||
| New Root Password MT | X | ||
| Removed LDAP Users MT | X |
*MT = Maintenance Task
Maintenance Tasks are only executable by Admins.
Cryptopus features an API. There are the Permissions defined as follows.
Key Permissions:
| API User | |
|---|---|
| Create Account | X |
| Update Account | X |
| Delete Account | X |