feat: enable dataset level ACL based authorization - Part 3 (!125) · Merge requests · Open Subsurface Data Universe Software / Platform / Domain Data Mgmt Services / Seismic / Seismic DMS Suite / seismic-dms-service

Merged Varunkumar Manohar requested to merge slb/vm/enforcedatasetacl into master Jun 28, 2021

This merge request accomplishes the following:

If the subproject access policy is set to uniform then datagroups based acl authorization remains the same
Else if the subproject access policy is set to dataset then the operations at the dataset level will now use the ACL groups at the dataset level for authorization checks
User addition at the dataset level
Copy utility endpoint to enforce dataset level ACL based authorization
Updates to the {{SVC_URL}}/utility/gcs-access-token endpoint enabling the generation of Google Cloud Storage access tokens at the object prefix level (specific folder level). Previously it was only possible to generate access tokens only at the bucket level. A bucket could contain multiple folders. Note this functionality is currently available only for Google Cloud 7 unit test fixes

Edited Jul 02, 2021 by Varunkumar Manohar