mirror of
https://github.com/netbirdio/netbird.git
synced 2026-04-16 15:26:40 +00:00
e586c20e36
Embed Dex as a built-in IdP to simplify self-hosting setup. Adds an embedded OIDC Identity Provider (Dex) with local user management and optional external IdP connectors (Google/GitHub/OIDC/SAML), plus device-auth flow for CLI login. Introduces instance onboarding/setup endpoints (including owner creation), field-level encryption for sensitive user data, a streamlined self-hosting provisioning script, and expanded APIs + test coverage for IdP management. more at https://github.com/netbirdio/netbird/pull/5008#issuecomment-3718987393
104 lines
2.4 KiB
Go
104 lines
2.4 KiB
Go
package roles
|
|
|
|
import (
|
|
"github.com/netbirdio/netbird/management/server/permissions/modules"
|
|
"github.com/netbirdio/netbird/management/server/permissions/operations"
|
|
"github.com/netbirdio/netbird/management/server/types"
|
|
)
|
|
|
|
var NetworkAdmin = RolePermissions{
|
|
Role: types.UserRoleNetworkAdmin,
|
|
AutoAllowNew: map[operations.Operation]bool{
|
|
operations.Read: false,
|
|
operations.Create: false,
|
|
operations.Update: false,
|
|
operations.Delete: false,
|
|
},
|
|
Permissions: Permissions{
|
|
modules.Networks: {
|
|
operations.Read: true,
|
|
operations.Create: true,
|
|
operations.Update: true,
|
|
operations.Delete: true,
|
|
},
|
|
modules.Groups: {
|
|
operations.Read: true,
|
|
operations.Create: true,
|
|
operations.Update: true,
|
|
operations.Delete: true,
|
|
},
|
|
modules.Settings: {
|
|
operations.Read: true,
|
|
operations.Create: false,
|
|
operations.Update: false,
|
|
operations.Delete: false,
|
|
},
|
|
modules.Accounts: {
|
|
operations.Read: true,
|
|
operations.Create: false,
|
|
operations.Update: false,
|
|
operations.Delete: false,
|
|
},
|
|
modules.Dns: {
|
|
operations.Read: true,
|
|
operations.Create: true,
|
|
operations.Update: true,
|
|
operations.Delete: true,
|
|
},
|
|
modules.Nameservers: {
|
|
operations.Read: true,
|
|
operations.Create: true,
|
|
operations.Update: true,
|
|
operations.Delete: true,
|
|
},
|
|
modules.Events: {
|
|
operations.Read: true,
|
|
operations.Create: false,
|
|
operations.Update: false,
|
|
operations.Delete: false,
|
|
},
|
|
modules.Policies: {
|
|
operations.Read: true,
|
|
operations.Create: true,
|
|
operations.Update: true,
|
|
operations.Delete: true,
|
|
},
|
|
modules.Routes: {
|
|
operations.Read: true,
|
|
operations.Create: true,
|
|
operations.Update: true,
|
|
operations.Delete: true,
|
|
},
|
|
modules.Users: {
|
|
operations.Read: true,
|
|
operations.Create: false,
|
|
operations.Update: false,
|
|
operations.Delete: false,
|
|
},
|
|
modules.SetupKeys: {
|
|
operations.Read: true,
|
|
operations.Create: false,
|
|
operations.Update: false,
|
|
operations.Delete: false,
|
|
},
|
|
modules.Pats: {
|
|
operations.Read: true,
|
|
operations.Create: true,
|
|
operations.Update: true,
|
|
operations.Delete: true,
|
|
},
|
|
modules.Peers: {
|
|
operations.Read: true,
|
|
operations.Create: false,
|
|
operations.Update: false,
|
|
operations.Delete: false,
|
|
},
|
|
modules.IdentityProviders: {
|
|
operations.Read: true,
|
|
operations.Create: false,
|
|
operations.Update: false,
|
|
operations.Delete: false,
|
|
},
|
|
},
|
|
}
|