We were discussing roles... lets see if we can agree on a nomenclature:
Consumer: A role of conumer allows you to manage only the specific consumer entitlements.
Owner: A user who can register the consumers.
Owner Admin: A user who has higher level access within an owner
Admin: Super user
To be honest.. I can not clearly differentiate between the second and third, but I can see us needing them. Thoughts???
-- bk
Just to be clear, are we talking people or machines here? I thought a consumer was a machine that used an entitlement. If not, then I suggest the name "Entitled System" to signify a machine that consumes one or more entitlements.
To be honest, I'd be suspect of the term Administrator anywhere in this, as it can be confusing. The people requesting entitlements for their systems are probably system administrators themselves, so everyone is administering something.
Bascially, what we have is a bunch of people with authority to do something, and handing off authority. It might make sense to take a sightly more general approach.
This image http://admiyo.fedorapeople.org/PartyPattern.png
Shows the basic Party pattern: both a person and a group are a party, a party is assigned to a group a party has a role in an organization that role has permisssion to perform actions on resources managed by the organization
So first off, we should define a couple bascic groups. If we want to keep the CandlePin analogy going, I'm all for it:
The overall site is the "Alley" A "League" is an organization that plays within the alley. A "League" is comprised of "teams".
"Teams" play "games" in the alley. This is the key analogy. You have to pay to play!
They are assigned "Lanes"
A "Team" has a "Captain"
Entitlements are the assignment to resources of the Alley: Shoes, Pins, Balls. Unlike big ball bowling, candlepin people tend to use the alley's balls. Entitlements are managed initially by the "Alley Staff" then by the "League" and finally used by the team.
I'd like to point out that WIkipedia has a pretty good page describing Candlepin, including some of the terms particular to this variation of bowling. I'd like to suggest we use the term "Half Worcester" for particularly nasty bugs.
On 03/16/2010 04:40 PM, Bryan Kearney wrote:
We were discussing roles... lets see if we can agree on a nomenclature:
Consumer: A role of conumer allows you to manage only the specific consumer entitlements.
Owner: A user who can register the consumers.
Owner Admin: A user who has higher level access within an owner
Admin: Super user
To be honest.. I can not clearly differentiate between the second and third, but I can see us needing them. Thoughts???
-- bk _______________________________________________ candlepin mailing list candlepin@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/candlepin
On 03/16/2010 09:18 PM, Adam Young wrote:
Just to be clear, are we talking people or machines here? I thought a consumer was a machine that used an entitlement. If not, then I suggest the name "Entitled System" to signify a machine that consumes one or more entitlements.
It is interesting, but i think we have 2 sets of roles. One is definatly users (Owner Users, SuperUsers). The other (consumer) could be a machine or a user.
To be honest, I'd be suspect of the term Administrator anywhere in this, as it can be confusing. The people requesting entitlements for their systems are probably system administrators themselves, so everyone is administering something.
Ok... I can go with SuperUser, SA, anything relaly.
Bascially, what we have is a bunch of people with authority to do something, and handing off authority. It might make sense to take a sightly more general approach.
It looks like from the code we are using JAAS. If so, can we adopt there authentication model? In that case, you grant permissions to principals.. which can be eithr users or roles. That is roughly what you have in the Party diagram
Shows the basic Party pattern: both a person and a group are a party, a party is assigned to a group a party has a role in an organization that role has permisssion to perform actions on resources managed by the organization
So first off, we should define a couple bascic groups. If we want to keep the CandlePin analogy going, I'm all for it:
The overall site is the "Alley" A "League" is an organization that plays within the alley. A "League" is comprised of "teams".
"Teams" play "games" in the alley. This is the key analogy. You have to pay to play!
They are assigned "Lanes"
A "Team" has a "Captain"
Entitlements are the assignment to resources of the Alley: Shoes, Pins, Balls. Unlike big ball bowling, candlepin people tend to use the alley's balls. Entitlements are managed initially by the "Alley Staff" then by the "League" and finally used by the team.
I'd like to point out that WIkipedia has a pretty good page describing Candlepin, including some of the terms particular to this variation of bowling. I'd like to suggest we use the term "Half Worcester" for particularly nasty bugs.
+1 for this.
-- bk
On 03/16/2010 05:40 PM, Bryan Kearney wrote:
We were discussing roles... lets see if we can agree on a nomenclature:
Consumer: A role of conumer allows you to manage only the specific consumer entitlements.
Owner: A user who can register the consumers.
Owner Admin: A user who has higher level access within an owner
Admin: Super user
To be honest.. I can not clearly differentiate between the second and third, but I can see us needing them. Thoughts???
-- bk _______________________________________________ candlepin mailing list candlepin@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/candlepin
it might be helpful to associate roles with organizations/org-units. In that light:
Owner Admin - management client with access to consumer information in a given org-unit. Admin - management client with full access.
-d
On 03/17/2010 09:38 AM, Dmitri Dolguikh wrote:
On 03/16/2010 05:40 PM, Bryan Kearney wrote:
We were discussing roles... lets see if we can agree on a nomenclature:
Consumer: A role of conumer allows you to manage only the specific consumer entitlements.
Owner: A user who can register the consumers.
Owner Admin: A user who has higher level access within an owner
Admin: Super user
To be honest.. I can not clearly differentiate between the second and third, but I can see us needing them. Thoughts???
-- bk _______________________________________________ candlepin mailing list candlepin@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/candlepin
it might be helpful to associate roles with organizations/org-units. In that light:
Owner Admin - management client with access to consumer information in a given org-unit. Admin - management client with full access.
I aagree.. that is better clarification. So.. Are folks ok with this:
Consumer: A role of conumer allows you to manage only the specific consumer entitlements. Owner: A user who can register the consumers for a given org-unit Owner Admin: A user who has higher level access within an org-unit Admin: Super user with full access
Adam hated Admin... anyone have better ideas for names?
-- bk
[snip]
it might be helpful to associate roles with organizations/org-units. In that light:
Owner Admin - management client with access to consumer information in a given org-unit. Admin - management client with full access.
I aagree.. that is better clarification. So.. Are folks ok with this:
Consumer: A role of conumer allows you to manage only the specific consumer entitlements. Owner: A user who can register the consumers for a given org-unit Owner Admin: A user who has higher level access within an org-unit Admin: Super user with full access
Adam hated Admin... anyone have better ideas for names?
Headpin PitBoss Root SuperTrooper SuperUser
jesus
Candlepin-staff for people who manage the candlepin system. for others it would be team captains or group leaders or something
I still think we are confusing consumer the person with consumer the system
On 03/19/2010 09:44 AM, Jesus M. Rodriguez wrote:
[snip]
it might be helpful to associate roles with organizations/org-units. In that light:
Owner Admin - management client with access to consumer information in a given org-unit. Admin - management client with full access.
I aagree.. that is better clarification. So.. Are folks ok with this:
Consumer: A role of conumer allows you to manage only the specific consumer entitlements. Owner: A user who can register the consumers for a given org-unit Owner Admin: A user who has higher level access within an org-unit Admin: Super user with full access
Adam hated Admin... anyone have better ideas for names?
Headpin PitBoss Root SuperTrooper SuperUser
jesus _______________________________________________ candlepin mailing list candlepin@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/candlepin
candlepin@lists.fedorahosted.org