#1128 Add UI to generate special API keys

sf-4 (350)

Follow up to #1125. A special key is a key with attached adhoc capability token to access API which otherwise is not available for general use.

User story is something like:

Site admin (and only site admin) should be able to go to a special page, where one can enter username for whom key is generated, expiration date for a key (having sensible default like today + 1 day or 7 days), capability name as a string, and optional capability discriminator as a string. After submitting this information, site admin is presented with a key value, which is passed to intended user via separate means. There also should be page to present all currently active (non-expired) special keys.


  • Paul Sokolovsky

    Paul Sokolovsky - 2010-11-17
    • status: open --> in-progress
    • assigned_to: Paul Sokolovsky
  • Paul Sokolovsky

    Paul Sokolovsky - 2010-11-17

    Apparently, this should be made as a tool, as we don't have some kind of "site admin pages" support yet. But so far it seems that all tools are mounted on a project, there's no support for a "global" tool. Well, such a tool can be mounted on u/* project for a user, effectively given a specific user permission to generate special API keys. But it's so far not clear how granter's capabilities to add new tools for a user would be configured and if it fits with already existing/intended usages. So far, neighbour admin for u/ can add tools for users.

  • Mark Ramm

    Mark Ramm - 2010-11-19
    • custom_field__milestone: backlog --> nov-22
  • Rick Copeland - 2010-11-30
    • custom_field__milestone: nov-22 --> dec-6
  • Paul Sokolovsky

    Paul Sokolovsky - 2010-11-30
    • status: in-progress --> closed
    • custom_field__milestone: dec-6 --> nov-22
  • Paul Sokolovsky

    Paul Sokolovsky - 2010-11-30

    Actually, this was merged last week.


Log in to post a comment.