Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Organization roles #83

Open
Kennric opened this issue Feb 27, 2017 · 2 comments
Open

Organization roles #83

Kennric opened this issue Feb 27, 2017 · 2 comments
Assignees

Comments

@Kennric
Copy link
Contributor

Kennric commented Feb 27, 2017

A concept of a user's roles within an organization would be very useful for time reporting.

For instance, at the OSL, there are staff and student workers, whose time is billed at different rates. This distinction does not correspond to specific permissions/projects/activities, so a group permissions model relating to projects doesn't really help.

Currently this role is stored in the user's metadata field as an arbitrary string.

Possible solutions:

  1. Create a new role-specific text field for the User object, which would contain a list of roles in some specified and validated format (comma separated list, probably). This is the simplest to implement, and allows arbitrary roles to be added on user edit without having to create additional objects. This doesn't enforce uniform role names or validate their entry (typos can become roles)

  2. Create a object 'org_role' that can be associated with a user, similar to the time/activity relationship. In this scenario, org_roles would be added separately from users, and users would be assigned by selecting from available org_roles. This is a more complex solution, but allows restriction to a specific list of roles. Front-end software can query this list of roles to provide an easy filtering interface.

@aaroncohen73
Copy link
Contributor

I'm a bigger fan of solution 2 because it would make more sense for roles to be selected from a drop-down on a web interface than typed into a textbox. It also makes more sense to go with solution 2 because in the case that a role name needs to be changed it would allow for a single edit to be made to the role object instead of many edits having to be made to all of the user objects. It would be more initial work on the API specification and back end, but it would be easier to make usable on the front end.

@MorganEPatch
Copy link
Contributor

I agree with @aaroncohen73, solution 2 enforces a set of known roles that the user can guarantee are correct rather than enabling arbitrary data to be entered into a field designed to be machine-readable.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

3 participants