Uploaded image for project: 'SAFe Program'
  1. SAFe Program
  2. SP-4349

Data product dashboard: authentication and authorisation

Change Owns to Parent OfsSet start and due date...
    XporterXMLWordPrintable

Details

    • Data Processing
    • Hide

      Only authorised users can view data; only authorised users can delete data. This reduces the risk of data exfiltration (not that this is a problem for AA0.5) and accidental or malicious deletion (a higher risk).

       

      Show
      Only authorised users can view data; only authorised users can delete data. This reduces the risk of data exfiltration (not that this is a problem for AA0.5) and accidental or malicious deletion (a higher risk).  
    • Hide

      The data product dashboard front end allows a user to authenticate, and then correctly validates tokens which it then uses with the data lifecycle management database to ensure that the user can only see those things which they are authorised to see, or delete those items which they are authorised to delete.

      The design and implementation should ensure that we are able to federate later on, when we need to work with SRCNet, and also ensure that we can have fine-grained access control on the databases, which will be needed when we release data to the SRCs and wider scientific community.
      See also SS-143 list.

      Show
      The data product dashboard front end allows a user to authenticate, and then correctly validates tokens which it then uses with the data lifecycle management database to ensure that the user can only see those things which they are authorised to see, or delete those items which they are authorised to delete. The design and implementation should ensure that we are able to federate later on, when we need to work with SRCNet, and also ensure that we can have fine-grained access control on the databases, which will be needed when we release data to the SRCs and wider scientific community. See also SS-143 list.
    • 1
    • 1
    • 0
    • Team_NALEDI
    • Sprint 4

    • PI23 - UNCOVERED

    Description

      See SS-143 for details.

      Attachments

        Issue Links

          Child Of

          Enabler - An Enabler supports the activities needed to extend the Architectural Runway to provide future business functionality. These include exploration, architecture, infrastructure, and compliance. SS-143 Enable a consistent approach to AAA for AA0.5

          • Should have - Items labelled as "Should have" are important but not necessary for delivery in the current delivery timebox. While "Should have" items can be as important as "Must have", they are often not as time-critical or there may be another way to satisfy the requirement so that it can be held back until a future delivery timebox.
          • Implementing

          Structure

            Activity

              People

                m.ashdown Ashdown, Mark
                v.allan Allan, Verity
                Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                Feature Progress

                  Story Point Burn-up: (100.00%)

                  Feature Estimate: 1.0

                  IssuesStory Points
                  To Do00.0
                  In Progress   00.0
                  Complete11.0
                  Total11.0

                  Dates

                    Created:
                    Updated:

                    Structure Helper Panel