From 55d746d3f5323f661238db9ecb2da93ad95e7430 Mon Sep 17 00:00:00 2001 From: Adrien Raffin-Caboisse Date: Wed, 16 Feb 2022 09:16:25 +0100 Subject: [PATCH] docs(acls-proposal): wording comment A hidden thing was implied in this document is that each person should have his own namespace. Hidden information in spicification isn't good. Thank's @kradalby for pointing it out. --- docs/proposals/001-acls.md | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/docs/proposals/001-acls.md b/docs/proposals/001-acls.md index 23435a2a..8a02e836 100644 --- a/docs/proposals/001-acls.md +++ b/docs/proposals/001-acls.md @@ -72,6 +72,12 @@ This implementation would render useless the sharing feature that is currently implemented since an ACL could do the same. Simplifying to only one user interface to do one thing is easier and less confusing for the users. +To better suit the ACLs in this proposition, it's advised to consider that each +namespaces belong to one person. This person can have multiple devices, they +will all be considered as the same user in the ACLs. OIDC feature wouldn't need +to map people to namespace, just create a namespace if the person isn't +registered yet. + As a sidenote, users would like to write ACLs as YAML. We should offer users the ability to rules in either format (HuJSON or YAML).