Works consisting in defining a clean API, then moving administration
functions from view to core, in progress.
- Functions to test, set and remove policy root administrators
- raise exception
- else return the (policy, policy_created)
- added the boolean argument 'restore' to the function. By default is True.
New the function can be used to restor the necessary objects of an existing
policy. If put to False, force to have all the objects created freshly.
create_policy view modified as a consequence.
Works consisting in defining a clean API, then moving administration
functions from view to core, are beginning.
- Added set_root_administrator and remove_root_administrator functions.
- Modified empower or downgrade root user view as a consequence
---------------------------------------
- Enable users for delegation of its permissions
- When a permission is given, it is tagged as delegable or not
- A user enabled for delegation can delegate every access it has if
the permission given the access is delegable
- When a permission is delegated, the grantor tells if that permission
may be delegated by the grantee
- When a permission is deleted, all the permissions given by delegation
from this permission are also deleted
- comming soon: time-limited permissions and delegations
- Switch licence to AGPL and add headers
- Remove the concept of ACS admin
- Add the policy management - The default policy is the policy of access control on other policies
- Add the aliases management - A Django user exist in policies with an alias. Every administrator as thus an alias in the default policy.