Feature #95
bitfolk authentication model needs to include users
| Status: | New | Start: | 2012-03-10 | |
|---|---|---|---|---|
| Priority: | Low | Due date: | ||
| Assigned to: | - | % Done: | 0% |
|
| Category: | - | |||
| Target version: | - | |||
| Votes: | 4 |
Description
Currently bitfolk issues one login per VPS, which provides access to the panel, wiki etc., but a proper security model would include people in the schema and then have a many-to-many mapping between people and the VPSes which they are authorized to admin. So then rather than logging into the panel as 'arctic', I would log in as 'aspiers' and be presented with a view of which VPSes I am entitled to admin. Likewise it's pretty dumb that my changes to the wiki are attributed to a user called 'Arctic' rather than 'Aspiers'.
This would allow customers to have multiple admins per VPS and still potentially retain proper auditing etc. Currently the same login credentials have to be shared amongst all admins, which is clearly not best practice.