Group membership fields for authorization were originally hard-coded into userenv.HasAdminRight(). These fields should be options under an authorization section in the config.toml file. This way, users can easily map LDAP security groups to access levels.
WANT
authorization section in config.toml- limitedaccess group field
- operatoraccess group field
- owneraccess group field
- owneraccess group added to
userenv.HasAdminRight()
- owneraccess role added to delete operations
Group membership fields for authorization were originally hard-coded into
userenv.HasAdminRight(). These fields should be options under anauthorizationsection in the config.toml file. This way, users can easily map LDAP security groups to access levels.WANT
authorizationsection in config.tomluserenv.HasAdminRight()