Home Explore Help
Register Sign In
VendorSoftwareFlowdat3
/
FTTH
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

FD3-53 refactory

Guillermo Espinoza 7 years ago
parent
1b53b1ace8
commit
2563c77011
2 changed files with 60 additions and 56 deletions
Split View Show Diff Stats
  1. 57 0
      app/config/roles.yml
  2. 3 56
      app/config/security.yml

+ 57 - 0
app/config/roles.yml
View File 

@@ -0,0 +1,57 @@
 
+security:
 
+
 
+    role_hierarchy:
 
+
 
+        # ONU
 
+        ROLE_SONATA_ONU_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_ONU_LIST, ROLE_SONATA_ADMIN_ONU_VIEW]
 
+        ROLE_SONATA_ONU_EDITOR: [ROLE_SONATA_ONU_READER, ROLE_SONATA_ADMIN_ONU_CREATE, ROLE_SONATA_ADMIN_ONU_EDIT]
 
+        ROLE_SONATA_ONU_ADMIN: [ROLE_SONATA_ONU_EDITOR, ROLE_SONATA_ADMIN_ONU_DELETE, ROLE_SONATA_ADMIN_ONU_EXPORT]
 
+
 
+        # OLT
 
+        ROLE_SONATA_OLT_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_OLT_LIST, ROLE_SONATA_ADMIN_OLT_VIEW]
 
+        ROLE_SONATA_OLT_EDITOR: [ROLE_SONATA_OLT_READER, ROLE_SONATA_ADMIN_OLT_CREATE, ROLE_SONATA_ADMIN_OLT_EDIT]
 
+        ROLE_SONATA_OLT_ADMIN: [ROLE_SONATA_OLT_EDITOR, ROLE_SONATA_ADMIN_OLT_DELETE, ROLE_SONATA_ADMIN_OLT_EXPORT]
 
+
 
+        # PROFILE
 
+        ROLE_SONATA_PROFILE_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_PROFILE_LIST, ROLE_SONATA_ADMIN_PROFILE_VIEW]
 
+        ROLE_SONATA_PROFILE_EDITOR: [ROLE_SONATA_PROFILE_READER, ROLE_SONATA_ADMIN_PROFILE_CREATE, ROLE_SONATA_ADMIN_PROFILE_EDIT]
 
+        ROLE_SONATA_PROFILE_ADMIN: [ROLE_SONATA_PROFILE_EDITOR, ROLE_SONATA_ADMIN_PROFILE_DELETE, ROLE_SONATA_ADMIN_PROFILE_EXPORT]
 
+
 
+        # NAP
 
+        ROLE_SONATA_NAP_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_NAP_LIST, ROLE_SONATA_ADMIN_NAP_VIEW]
 
+        ROLE_SONATA_NAP_EDITOR: [ROLE_SONATA_NAP_READER, ROLE_SONATA_ADMIN_NAP_CREATE, ROLE_SONATA_ADMIN_NAP_EDIT]
 
+        ROLE_SONATA_NAP_ADMIN: [ROLE_SONATA_NAP_EDITOR, ROLE_SONATA_ADMIN_NAP_DELETE, ROLE_SONATA_ADMIN_NAP_EXPORT]
 
+
 
+        # ONU_MODEL
 
+        ROLE_SONATA_ONU_MODEL_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_ONU_MODEL_LIST, ROLE_SONATA_ADMIN_ONU_MODEL_VIEW]
 
+        ROLE_SONATA_ONU_MODEL_EDITOR: [ROLE_SONATA_ONU_MODEL_READER, ROLE_SONATA_ADMIN_ONU_MODEL_CREATE, ROLE_SONATA_ADMIN_ONU_MODEL_EDIT]
 
+        ROLE_SONATA_ONU_MODEL_ADMIN: [ROLE_SONATA_ONU_MODEL_EDITOR, ROLE_SONATA_ADMIN_ONU_MODEL_DELETE, ROLE_SONATA_ADMIN_ONU_MODEL_EXPORT]
 
+
 
+        # OLT_MODEL
 
+        ROLE_SONATA_OLT_MODEL_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_OLT_MODEL_LIST, ROLE_SONATA_ADMIN_OLT_MODEL_VIEW]
 
+        ROLE_SONATA_OLT_MODEL_EDITOR: [ROLE_SONATA_OLT_MODEL_READER, ROLE_SONATA_ADMIN_OLT_MODEL_CREATE, ROLE_SONATA_ADMIN_OLT_MODEL_EDIT]
 
+        ROLE_SONATA_OLT_MODEL_ADMIN: [ROLE_SONATA_OLT_MODEL_EDITOR, ROLE_SONATA_ADMIN_OLT_MODEL_DELETE, ROLE_SONATA_ADMIN_OLT_MODEL_EXPORT]
 
+
 
+        # NAS_MODEL
 
+        ROLE_SONATA_NAS_MODEL_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_NAS_MODEL_LIST, ROLE_SONATA_ADMIN_NAS_MODEL_VIEW]
 
+        ROLE_SONATA_NAS_MODEL_EDITOR: [ROLE_SONATA_NAS_MODEL_READER, ROLE_SONATA_ADMIN_NAS_MODEL_CREATE, ROLE_SONATA_ADMIN_NAS_MODEL_EDIT]
 
+        ROLE_SONATA_NAS_MODEL_ADMIN: [ROLE_SONATA_NAS_MODEL_EDITOR, ROLE_SONATA_ADMIN_NAS_MODEL_DELETE, ROLE_SONATA_ADMIN_NAS_MODEL_EXPORT]
 
+
 
+        # NAS
 
+        ROLE_SONATA_NAS_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_NAS_LIST, ROLE_SONATA_ADMIN_NAS_VIEW]
 
+        ROLE_SONATA_NAS_EDITOR: [ROLE_SONATA_NAS_READER, ROLE_SONATA_ADMIN_NAS_CREATE, ROLE_SONATA_ADMIN_NAS_EDIT]
 
+        ROLE_SONATA_NAS_ADMIN: [ROLE_SONATA_NAS_EDITOR, ROLE_SONATA_ADMIN_NAS_DELETE, ROLE_SONATA_ADMIN_NAS_EXPORT]
 
+
 
+        # WORKFLOW
 
+        ROLE_SONATA_WORKFLOW_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_WORKFLOW_LIST, ROLE_SONATA_ADMIN_WORKFLOW_VIEW]
 
+        ROLE_SONATA_WORKFLOW_EDITOR: [ROLE_SONATA_WORKFLOW_READER, ROLE_SONATA_ADMIN_WORKFLOW_CREATE, ROLE_SONATA_ADMIN_WORKFLOW_EDIT]
 
+        ROLE_SONATA_WORKFLOW_ADMIN: [ROLE_SONATA_WORKFLOW_EDITOR, ROLE_SONATA_ADMIN_WORKFLOW_DELETE, ROLE_SONATA_ADMIN_WORKFLOW_EXPORT]
 
+
 
+        # ACTION
 
+        ROLE_SONATA_ACTION_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_ACTION_LIST, ROLE_SONATA_ADMIN_ACTION_VIEW]
 
+        ROLE_SONATA_ACTION_EDITOR: [ROLE_SONATA_ACTION_READER, ROLE_SONATA_ADMIN_ACTION_CREATE, ROLE_SONATA_ADMIN_ACTION_EDIT]
 
+        ROLE_SONATA_ACTION_ADMIN: [ROLE_SONATA_ACTION_EDITOR, ROLE_SONATA_ADMIN_ACTION_DELETE, ROLE_SONATA_ADMIN_ACTION_EXPORT]
 
+
 
+        ROLE_ADMIN_TENANCIES: ROLE_ADMIN_TENANCIES
 
+        ROLE_ADMIN: [ROLE_USER, ROLE_SONATA_ADMIN]
 
+        ROLE_SUPER_ADMIN: [ROLE_ADMIN, ROLE_USER_CREATE, ROLE_ADMIN_TENANCIES, ROLE_ALLOWED_TO_SWITCH]

+ 3 - 56
app/config/security.yml
View File 

@@ -1,64 +1,11 @@
 
+imports:
 
+    - { resource: roles.yml }
 
+
 
 security:
 
     providers:
 
         oauth:
 
             id: base_oauth_bundle.oauth_user_provider
 
 
-    role_hierarchy:
 
-
 
-        # ONU
 
-        ROLE_SONATA_ONU_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_ONU_LIST, ROLE_SONATA_ADMIN_ONU_VIEW]
 
-        ROLE_SONATA_ONU_EDITOR: [ROLE_SONATA_ONU_READER, ROLE_SONATA_ADMIN_ONU_CREATE, ROLE_SONATA_ADMIN_ONU_EDIT]
 
-        ROLE_SONATA_ONU_ADMIN: [ROLE_SONATA_ONU_EDITOR, ROLE_SONATA_ADMIN_ONU_DELETE, ROLE_SONATA_ADMIN_ONU_EXPORT]
 
-
 
-        # OLT
 
-        ROLE_SONATA_OLT_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_OLT_LIST, ROLE_SONATA_ADMIN_OLT_VIEW]
 
-        ROLE_SONATA_OLT_EDITOR: [ROLE_SONATA_OLT_READER, ROLE_SONATA_ADMIN_OLT_CREATE, ROLE_SONATA_ADMIN_OLT_EDIT]
 
-        ROLE_SONATA_OLT_ADMIN: [ROLE_SONATA_OLT_EDITOR, ROLE_SONATA_ADMIN_OLT_DELETE, ROLE_SONATA_ADMIN_OLT_EXPORT]
 
-
 
-        # PROFILE
 
-        ROLE_SONATA_PROFILE_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_PROFILE_LIST, ROLE_SONATA_ADMIN_PROFILE_VIEW]
 
-        ROLE_SONATA_PROFILE_EDITOR: [ROLE_SONATA_PROFILE_READER, ROLE_SONATA_ADMIN_PROFILE_CREATE, ROLE_SONATA_ADMIN_PROFILE_EDIT]
 
-        ROLE_SONATA_PROFILE_ADMIN: [ROLE_SONATA_PROFILE_EDITOR, ROLE_SONATA_ADMIN_PROFILE_DELETE, ROLE_SONATA_ADMIN_PROFILE_EXPORT]
 
-
 
-        # NAP
 
-        ROLE_SONATA_NAP_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_NAP_LIST, ROLE_SONATA_ADMIN_NAP_VIEW]
 
-        ROLE_SONATA_NAP_EDITOR: [ROLE_SONATA_NAP_READER, ROLE_SONATA_ADMIN_NAP_CREATE, ROLE_SONATA_ADMIN_NAP_EDIT]
 
-        ROLE_SONATA_NAP_ADMIN: [ROLE_SONATA_NAP_EDITOR, ROLE_SONATA_ADMIN_NAP_DELETE, ROLE_SONATA_ADMIN_NAP_EXPORT]
 
-
 
-        # ONU_MODEL
 
-        ROLE_SONATA_ONU_MODEL_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_ONU_MODEL_LIST, ROLE_SONATA_ADMIN_ONU_MODEL_VIEW]
 
-        ROLE_SONATA_ONU_MODEL_EDITOR: [ROLE_SONATA_ONU_MODEL_READER, ROLE_SONATA_ADMIN_ONU_MODEL_CREATE, ROLE_SONATA_ADMIN_ONU_MODEL_EDIT]
 
-        ROLE_SONATA_ONU_MODEL_ADMIN: [ROLE_SONATA_ONU_MODEL_EDITOR, ROLE_SONATA_ADMIN_ONU_MODEL_DELETE, ROLE_SONATA_ADMIN_ONU_MODEL_EXPORT]
 
-
 
-        # OLT_MODEL
 
-        ROLE_SONATA_OLT_MODEL_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_OLT_MODEL_LIST, ROLE_SONATA_ADMIN_OLT_MODEL_VIEW]
 
-        ROLE_SONATA_OLT_MODEL_EDITOR: [ROLE_SONATA_OLT_MODEL_READER, ROLE_SONATA_ADMIN_OLT_MODEL_CREATE, ROLE_SONATA_ADMIN_OLT_MODEL_EDIT]
 
-        ROLE_SONATA_OLT_MODEL_ADMIN: [ROLE_SONATA_OLT_MODEL_EDITOR, ROLE_SONATA_ADMIN_OLT_MODEL_DELETE, ROLE_SONATA_ADMIN_OLT_MODEL_EXPORT]
 
-
 
-        # NAS_MODEL
 
-        ROLE_SONATA_NAS_MODEL_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_NAS_MODEL_LIST, ROLE_SONATA_ADMIN_NAS_MODEL_VIEW]
 
-        ROLE_SONATA_NAS_MODEL_EDITOR: [ROLE_SONATA_NAS_MODEL_READER, ROLE_SONATA_ADMIN_NAS_MODEL_CREATE, ROLE_SONATA_ADMIN_NAS_MODEL_EDIT]
 
-        ROLE_SONATA_NAS_MODEL_ADMIN: [ROLE_SONATA_NAS_MODEL_EDITOR, ROLE_SONATA_ADMIN_NAS_MODEL_DELETE, ROLE_SONATA_ADMIN_NAS_MODEL_EXPORT]
 
-
 
-        # NAS
 
-        ROLE_SONATA_NAS_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_NAS_LIST, ROLE_SONATA_ADMIN_NAS_VIEW]
 
-        ROLE_SONATA_NAS_EDITOR: [ROLE_SONATA_NAS_READER, ROLE_SONATA_ADMIN_NAS_CREATE, ROLE_SONATA_ADMIN_NAS_EDIT]
 
-        ROLE_SONATA_NAS_ADMIN: [ROLE_SONATA_NAS_EDITOR, ROLE_SONATA_ADMIN_NAS_DELETE, ROLE_SONATA_ADMIN_NAS_EXPORT]
 
-
 
-        # WORKFLOW
 
-        ROLE_SONATA_WORKFLOW_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_WORKFLOW_LIST, ROLE_SONATA_ADMIN_WORKFLOW_VIEW]
 
-        ROLE_SONATA_WORKFLOW_EDITOR: [ROLE_SONATA_WORKFLOW_READER, ROLE_SONATA_ADMIN_WORKFLOW_CREATE, ROLE_SONATA_ADMIN_WORKFLOW_EDIT]
 
-        ROLE_SONATA_WORKFLOW_ADMIN: [ROLE_SONATA_WORKFLOW_EDITOR, ROLE_SONATA_ADMIN_WORKFLOW_DELETE, ROLE_SONATA_ADMIN_WORKFLOW_EXPORT]
 
-
 
-        # ACTION
 
-        ROLE_SONATA_ACTION_READER: [ROLE_ADMIN, ROLE_SONATA_ADMIN_ACTION_LIST, ROLE_SONATA_ADMIN_ACTION_VIEW]
 
-        ROLE_SONATA_ACTION_EDITOR: [ROLE_SONATA_ACTION_READER, ROLE_SONATA_ADMIN_ACTION_CREATE, ROLE_SONATA_ADMIN_ACTION_EDIT]
 
-        ROLE_SONATA_ACTION_ADMIN: [ROLE_SONATA_ACTION_EDITOR, ROLE_SONATA_ADMIN_ACTION_DELETE, ROLE_SONATA_ADMIN_ACTION_EXPORT]
 
-
 
-        ROLE_ADMIN_TENANCIES: ROLE_ADMIN_TENANCIES
 
-        ROLE_ADMIN: [ROLE_USER, ROLE_SONATA_ADMIN]
 
-        ROLE_SUPER_ADMIN: [ROLE_ADMIN, ROLE_USER_CREATE, ROLE_ADMIN_TENANCIES, ROLE_ALLOWED_TO_SWITCH]
 
-
 
     firewalls:
 
 
         dev: