7accdd547c86fd673b844997be8d02769f6050d1
wiki/info/security/permission-migration-tests.md
| ... | ... | @@ -140,6 +140,14 @@ In addition for the verifications for the basic security model (decribed above) |
| 140 | 140 | * The user having "data_mining" permission must still be able to use DataMining on the server. Others must not be able to access the DataMining UI. |
| 141 | 141 | * In RaceBoard, the user having role "mediaeditor" needs to be able to manage media. Others must not. |
| 142 | 142 | |
| 143 | +## Usage based scenarios for the security model |
|
| 144 | + |
|
| 145 | +### verification |
|
| 146 | + |
|
| 147 | +TODO: |
|
| 148 | +* one user creates event model -> not visible by another user |
|
| 149 | +* one user adds another user by name to his group and adds "sailing_viewer" to his group -> stuff needs to be visible to the other user, but not editable |
|
| 150 | + |
|
| 143 | 151 | ## Changed semantics in the sse model |
| 144 | 152 | |
| 145 | 153 | The semantics (requirements and behavior) of several parts of the sse model was changed based on the new security model. |