Authorize users based on DEPSEUDO privilege
kschulst opened this issue · 1 comments
kschulst commented
Right now authorization to depseudonymize a dataset is granted by matching the users username to a static list of trusted users configured in the dapla-pseudo-service.
Instead, the dapla-pseudo-service should check if the user has a special DEPSEUDO privilege associated with the dataset that is requested to be depseudonymized.
kschulst commented
The DEPSEUDO access privilege has been introduced, and the pseudo-service already supports checking access priviliges from the user-access service.