Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | |||
tutorial:adm:codeable_permission [2019/05/20 08:52] fiserp proofreading |
tutorial:adm:codeable_permission [2019/05/20 09:01] (current) fiserp proofreading |
||
---|---|---|---|
Line 46: | Line 46: | ||
===== Define evaluator with restriction for access to one certification authority ===== | ===== Define evaluator with restriction for access to one certification authority ===== | ||
- | This tutorial is similar to the first one. Instead of an identity, we grant user a permission to work with some certificate authority. | + | This tutorial is similar to the first one. Instead of an identity, we grant user a permission to work with some certificate authority. |
==== Step 1. - Get code of certification authority ==== | ==== Step 1. - Get code of certification authority ==== | ||
- | In first step we must get code of certification authority. | + | Get the **code** of certification authority. |
- | <note important> | + | <note important> |
{{ : | {{ : | ||
==== Step 2. - Create codeable evaluator for role ==== | ==== Step 2. - Create codeable evaluator for role ==== | ||
- | For next step must exists | + | For this step you have to have a role created |
{{ : | {{ : | ||
==== Step 3. - Define new evaluator ==== | ==== Step 3. - Define new evaluator ==== | ||
- | On modal window select | + | On modal window, select: |
+ | * Entity | ||
+ | * Evaluator type: **CodeableEvaluator**. | ||
+ | |||
+ | Application | ||
{{ : | {{ : | ||
- | And after save new evaluator | + | Save new evaluator. If everything is ok, you can see it in the list of existing |
{{ : | {{ : | ||
==== Step 4. - Add role to user ==== | ==== Step 4. - Add role to user ==== | ||
- | Add newly create | + | Add a role to some user. This user will now obtain a permission |
{{ : | {{ : | ||
Line 77: | Line 82: | ||
==== Step 5. - Result ==== | ==== Step 5. - Result ==== | ||
- | After this role will be added to user. User will saw only this certification authority. | + | Final result - user can see only the certification authority |
{{ : | {{ : | ||
- | |||
- | This restriction of certification authority can be used for add permission for request certificates only by one authority. |