[pdm-devel] [PATCH datacenter-manager v2 03/12] acl: add '/view' and '/view/{view-id}' as allowed ACL paths
Dominik Csapak
d.csapak at proxmox.com
Wed Nov 5 11:07:58 CET 2025
Reviewed-by: Dominik Csapak <d.csapak at proxmox.com>
On 11/3/25 1:35 PM, Lukas Wagner wrote:
> These paths will be used for ACL objects for views. A view has filter
> rules that specify which resources/remotes are included in the view. If
> a user has permissions on the corresponding ACL object for the view,
> then the privileges are transitively applied to the included resources
> as well.
>
> Signed-off-by: Lukas Wagner <l.wagner at proxmox.com>
> ---
> server/src/acl.rs | 6 ++++++
> 1 file changed, 6 insertions(+)
>
> diff --git a/server/src/acl.rs b/server/src/acl.rs
> index 52a1f972..f5f57c03 100644
> --- a/server/src/acl.rs
> +++ b/server/src/acl.rs
> @@ -150,6 +150,12 @@ impl proxmox_access_control::init::AccessControlConfig for AccessControlConfig {
> _ => {}
> }
> }
> + "view" => {
> + // `/view` and `/view/{view-id}`
> + if components_len <= 2 {
> + return Ok(());
> + }
> + }
> _ => {}
> }
>
More information about the pdm-devel
mailing list