Re: [yaco-liaison-tool] The liaison tool: Status Update

Patrik Fältström <pfaltstr@cisco.com> Thu, 07 April 2011 09:17 UTC

Return-Path: <pfaltstr@cisco.com>
X-Original-To: yaco-liaison-tool@core3.amsl.com
Delivered-To: yaco-liaison-tool@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 102B23A68DF for <yaco-liaison-tool@core3.amsl.com>; Thu, 7 Apr 2011 02:17:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.299
X-Spam-Level:
X-Spam-Status: No, score=-10.299 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W09mNqncbCq7 for <yaco-liaison-tool@core3.amsl.com>; Thu, 7 Apr 2011 02:17:51 -0700 (PDT)
Received: from ams-iport-1.cisco.com (ams-iport-1.cisco.com [144.254.224.140]) by core3.amsl.com (Postfix) with ESMTP id F2BDF3A68D6 for <yaco-liaison-tool@ietf.org>; Thu, 7 Apr 2011 02:17:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=pfaltstr@cisco.com; l=2191; q=dns/txt; s=iport; t=1302167976; x=1303377576; h=subject:mime-version:from:in-reply-to:date:cc: content-transfer-encoding:message-id:references:to; bh=bMO87n8wwK+5DjbC6KNKUpYxsjbJrni9F4x3a/wwQp8=; b=WhjQKRwo8oCfKyfsR7M6eIiuU2EDZqcPhRTUiz5i8WEBvDrdaxEH6Aai kKD7JNkMyDNilfCleUFM35fOuLodjWXt1fh2fsWwerRm254XKAGjefxJz fqgM4HRTrBYAz1kP99E4V2tW0ycvZFxGhTJVWwSNkYpzVEHDbAHvjbkXS Y=;
X-IronPort-AV: E=Sophos;i="4.63,315,1299456000"; d="scan'208";a="82573257"
Received: from ams-core-4.cisco.com ([144.254.72.77]) by ams-iport-1.cisco.com with ESMTP; 07 Apr 2011 09:19:35 +0000
Received: from ams3-vpn-dhcp6505.cisco.com (ams3-vpn-dhcp6505.cisco.com [10.61.89.104]) by ams-core-4.cisco.com (8.14.3/8.14.3) with ESMTP id p379JYhk029573; Thu, 7 Apr 2011 09:19:34 GMT
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset=iso-8859-1
From: =?iso-8859-1?Q?Patrik_F=E4ltstr=F6m?= <pfaltstr@cisco.com>
In-Reply-To: <4D9D7EFC.8040503@yaco.es>
Date: Thu, 7 Apr 2011 11:19:34 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <4A5DE368-1D2B-4419-A8C3-0E31749285C7@cisco.com>
References: <4D483171.7090508@levkowetz.com> <A9723AE7-F5B8-4722-BBB6-80F71C6AED31@amsl.com> <4D485061.3090204@levkowetz.com> <1FD00AF1-C1C6-4D33-9E70-E2B3D3ED11A6@cisco.com> <4D494292.1000809@levkowetz.com> <D4C88766-1C27-4212-B833-EF9F3B06452C@cisco.com> <4D49D50A.9000408@levkowetz.com> <18D7B1E6-2A70-4C5A-8C0E-9D43AD489599@cisco.com> <4D4B0946.7070302@levkowetz.com> <AF68B07C-FB34-4B7D-B710-848C710E20E1@cisco.com> <4D4BB18F.8020808@yaco.es> <09D40B0B-3058-4416-AC88-49C072EE93E0@cisco.com> <1EA3B690-E6A3-4988-8D2A-8A73147117EA@amsl.com> <C09F0708-AD85-4B96-BB63-537DE1936373@cisco.com> <4D9C5C79.40904@levkowetz.com> <4D9C72BB.8020605@yaco.es> <4D9D74E6.3080808@levkowetz.com> <37685D0B-E5C4-4AAF-AF3F-CA61663D789B@cisco.com> <4D9D7EFC.8040503@yaco.es>
To: =?iso-8859-1?Q?Emilio_A=2E_S=E1nchez?= <esanchez@yaco.es>
X-Mailer: Apple Mail (2.1084)
X-Mailman-Approved-At: Thu, 07 Apr 2011 04:23:15 -0700
Cc: yaco-liaison-tool@ietf.org, Eliot Lear <lear@cisco.com>, Ray Pelletier <rpelletier@isoc.org>
Subject: Re: [yaco-liaison-tool] The liaison tool: Status Update
X-BeenThere: yaco-liaison-tool@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of the Yaco / Liaison Statement Management Tool Project details <yaco-liaison-tool.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/yaco-liaison-tool>, <mailto:yaco-liaison-tool-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/yaco-liaison-tool>
List-Post: <mailto:yaco-liaison-tool@ietf.org>
List-Help: <mailto:yaco-liaison-tool-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/yaco-liaison-tool>, <mailto:yaco-liaison-tool-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Apr 2011 09:17:52 -0000

On 7 apr 2011, at 11.08, Emilio A. Sánchez wrote:

>> The important thing is to be able to update the liaisons. And we can trust our (IETF) liaisons, so to get fine-grained access rights is not so important. The ability to get things right in the database is. Having bad data in the database -- as now -- is not working in the long(er) run.
> 
>   I suppose, as I said in my previous mail, that the problem is who can 'take care' (mark as done) a liaison. Right now this action can be done by anyone whose email is listed in the liaison. But probably I should add the people that can edit the liaison to the ones that can 'take care' of it.

That imply that someone from ITU-T that is the receiver of a liaison can log in an edit an outgoing liaison that they receive... "interesting feature"...

You have an access right already today when one add a liaison, right? That access algorithm say whether you as a user can add certain data in the to/from fields.

1. An external party, for example someone from ITU SG2, should only be able to add a liaison that is incoming to IETF from SG2, but with various receivers on the IETF side.

2. An internal party, for example liaison to ITU-T SG2, should only be able to add liaisons to or from IETF and that external party.

3. An internal party that has power gloves, like the liaison to ITU-T should be like (2) but for more SG's than one

4. Secretariat should be able to access everything

Easiest way of course for 1, 2 and 3 is to have the ability for each user to map that to one relationship, and whether the access is incoming or outgoing. For example:

A. A user have access to some external groups (zero or more).

B. If the user is _incoming_ then the user can only add incoming liaisons.

C. If the user is _outgoing_ then the user can add incoming, outgoing liaisons AND edit the liaisons.

But once again, I am not so worried about giving people "too much access" to start with, because we have had problems for years with having not enough access in the tool.

So lets start with what you now have created! Sounds fine!

   Patrik