Skip to content

Change to group roles #568

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
LKajan merged 10 commits into from
Jan 14, 2026
Merged

Change to group roles #568

LKajan merged 10 commits into from
Jan 14, 2026

Conversation

@LKajan
Copy link
Collaborator

@LKajan LKajan commented Jan 14, 2026
edited
Loading

Change to personal database users and manage privileges by roles
Remove login roles and add group roles which have table privileges. Let organizations handle personal database accounts themselfs and assign a suitable role for a user.

There are now the following roles:

  • arho_dba (login role): the owner of db objects. Schema migrations are run by this user.
  • arho_admin: can manage users, has privilege to delete plans and plan matters.
  • arho_read_only: has only read privileges on arho tables.
  • arho_read_write: normal user that has edit permissions on arho tables except delete permission for the plan and plan matter tables.

Resolves #554

LKajan added 10 commits January 14, 2026 09:54
@LKajan
Change to personal database users and manage privileges by roles
3614961 
Remove login roles and add group roles which have table privileges. Let
organizations handle personal database accounts themselfs and assign a
suitable role for a user.

There are now the following roles:
- arho_dba (login role): the owner of db objects. Schema migrations are
    run by this user.
- arho_admin: can manage users, has privilege to delete plans and plan
    matters.
- arho_read_only: has only read privileges on arho tables.
- arho_read_write: normal user that has edit permissions on arho tables
    except delete permission for the plan and plan matter tables.
@LKajan
Typing clarifications
9797baf
@LKajan
Test database in test functions instead of fixture setup
e72b3fa
@LKajan
Truncate tables after test instead of deleting each object separately
865b460
@LKajan
Add db host to output
5dcdda0
@LKajan
Delete var file for a removed environment
eb97595
@LKajan
Add config files for dev environment
0bdad40
@LKajan
Rename var file for a environment
0681b8c
@LKajan
Update a var file for a environment
010cf0d
@LKajan
Add var file en/decruption to a makefile
3ac6ec9
@LKajan LKajan merged commit 16e973a into main Jan 14, 2026
3 checks passed
@LKajan LKajan deleted the group-roles branch January 14, 2026 08:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Muokkaa käyttäjäjien luonti terraform-konfiguraatiossa

2 participants

@LKajan