mirror of
https://github.com/goharbor/harbor.git
synced 2024-09-30 14:27:35 +02:00
71 lines
3.2 KiB
Go
71 lines
3.2 KiB
Go
package system
|
|
|
|
import (
|
|
"github.com/goharbor/harbor/src/common/rbac"
|
|
"github.com/goharbor/harbor/src/pkg/permission/types"
|
|
)
|
|
|
|
var (
|
|
policies = []*types.Policy{
|
|
{Resource: rbac.ResourceCatalog, Action: rbac.ActionRead},
|
|
|
|
{Resource: rbac.ResourceAuditLog, Action: rbac.ActionList},
|
|
|
|
{Resource: rbac.ResourceProject, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceProject, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceProject, Action: rbac.ActionUpdate},
|
|
{Resource: rbac.ResourceProject, Action: rbac.ActionDelete},
|
|
{Resource: rbac.ResourceProject, Action: rbac.ActionList},
|
|
|
|
{Resource: rbac.ResourceUser, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceUser, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceUser, Action: rbac.ActionUpdate},
|
|
{Resource: rbac.ResourceUser, Action: rbac.ActionDelete},
|
|
{Resource: rbac.ResourceUser, Action: rbac.ActionList},
|
|
|
|
{Resource: rbac.ResourceUserGroup, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceUserGroup, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceUserGroup, Action: rbac.ActionUpdate},
|
|
{Resource: rbac.ResourceUserGroup, Action: rbac.ActionDelete},
|
|
{Resource: rbac.ResourceUserGroup, Action: rbac.ActionList},
|
|
|
|
{Resource: rbac.ResourceRegistry, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceRegistry, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceRegistry, Action: rbac.ActionUpdate},
|
|
{Resource: rbac.ResourceRegistry, Action: rbac.ActionDelete},
|
|
{Resource: rbac.ResourceRegistry, Action: rbac.ActionList},
|
|
|
|
{Resource: rbac.ResourceReplication, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceReplication, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceReplication, Action: rbac.ActionUpdate},
|
|
{Resource: rbac.ResourceReplication, Action: rbac.ActionList},
|
|
{Resource: rbac.ResourceReplication, Action: rbac.ActionDelete},
|
|
|
|
{Resource: rbac.ResourceDistribution, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceDistribution, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceDistribution, Action: rbac.ActionUpdate},
|
|
{Resource: rbac.ResourceDistribution, Action: rbac.ActionDelete},
|
|
{Resource: rbac.ResourceDistribution, Action: rbac.ActionList},
|
|
|
|
{Resource: rbac.ResourceGarbageCollection, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceGarbageCollection, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceGarbageCollection, Action: rbac.ActionUpdate},
|
|
{Resource: rbac.ResourceGarbageCollection, Action: rbac.ActionDelete},
|
|
{Resource: rbac.ResourceGarbageCollection, Action: rbac.ActionList},
|
|
|
|
{Resource: rbac.ResourceScanAll, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceScanAll, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceScanAll, Action: rbac.ActionUpdate},
|
|
{Resource: rbac.ResourceScanAll, Action: rbac.ActionDelete},
|
|
{Resource: rbac.ResourceScanAll, Action: rbac.ActionList},
|
|
{Resource: rbac.ResourceScanAll, Action: rbac.ActionStop},
|
|
|
|
{Resource: rbac.ResourceSystemVolumes, Action: rbac.ActionRead},
|
|
|
|
{Resource: rbac.ResourceLdapUser, Action: rbac.ActionCreate},
|
|
{Resource: rbac.ResourceLdapUser, Action: rbac.ActionList},
|
|
{Resource: rbac.ResourceConfiguration, Action: rbac.ActionRead},
|
|
{Resource: rbac.ResourceConfiguration, Action: rbac.ActionUpdate},
|
|
}
|
|
)
|