I have aspnetzero, the latest release and want to know if I can have a Access Control List that spans tenants.
Some more details:I have a Dev, stagging, Production systems, a) TenantA, user1, user2, Role1, Role2 b) TenantB, user3, user4, Role3, Role4. User3 is using a normal data entry form and wants to share the data with User1, preferable without copying data, Hence the idea of ACL.
How can i use/implement the ACL I am describing for the systems outlined. Thanks.
2 Answer(s)
-
0
Hi @murphymj5209
Does User3 wants to share some of the entries and doesn't want to share some others ? If so, you can make your entity nun multi-tenant and create a second table (EntityId & SharedUserId) to share data with other users.
-
0
so in doing this your suggested way, to me it reads that security just went out the door??!!
Yes, a bold statement but how does TenantA user1, 'find' TenantB User3 so sharing can happen?
I think I have my 'solution': https://casbin.org/ its does the 3 flavors of acl's. My hesitancy in doing personal coding is alot of effort for an inexperienced area.
I would suggest that this or other system be implemented for a future release. Thanks again for your help.
