Skip to Content.
Sympa Menu

grouper-users - Re: [grouper-users] Noob Question about VIEW permissions

Subject: Grouper Users - Open Discussion List

List archive

Re: [grouper-users] Noob Question about VIEW permissions


Chronological Thread 
  • From: Rob Gorrell <>
  • To: Andrew Morgan <>
  • Cc: Jeffrey Williams <>, Grouper-Users <>
  • Subject: Re: [grouper-users] Noob Question about VIEW permissions
  • Date: Tue, 10 Apr 2018 13:08:47 -0400
  • Ironport-phdr: 9a23:oMGb3heaEKVZnyIbn2GlgIJKlGMj4u6mDksu8pMizoh2WeGdxcuzZh7h7PlgxGXEQZ/co6odzbaO6Oa4ASQp2tWoiDg6aptCVhsI2409vjcLJ4q7M3D9N+PgdCcgHc5PBxdP9nC/NlVJSo6lPwWB6nK94iQPFRrhKAF7Ovr6GpLIj8Swyuu+54Dfbx9HiTahb75+Ngm6oRnMvcQKnIVuLbo8xAHUqXVSYeRWwm1oJVOXnxni48q74YBu/SdNtf8/7sBMSar1cbg2QrxeFzQmLns65Nb3uhnZTAuA/WUTX2MLmRdVGQfF7RX6XpDssivms+d2xSeXMdHqQb0yRD+v9LlgRgP2hygbNj456GDXhdJ2jKJHuxKquhhzz5fJbI2JKPZye6XQds4YS2VcRMZcTy5OAo28YYUBDOQPIPhWoJXmqlQUsRezHxOhCP/zxjJKgHL9wK000/4mEQHDxAEuA9UOv2/Jp9v0M6cSS/q1w7fMzTXHcvhb3i396YbHchAmu/GMR6x/cc7KxEkyEQPKklqQpZb7MDyIy+QAqm6W5PdjW+K3k2MrtQB8riSty8ophInEhZkaxkzB+Ch23Io5OcC0RUtnbtK4C5RdsiSXO5V4T888RWxjpTw0xaccuZGheSgH0JQnyADba/yAa4WI5wjsVOeVITthhXJlZK6ziw+98ES+xODwSNO40FlNripCndnMsm4C2wbP5ciAT/tx5kah2TCR2ADP8uxIP0E5mbbZJpMkzL49lYEcvVjGEyL5hEn6kLKae0A49eS08OvqZ7DrqoGSOoNqkg3+N74hms27AeQ2KAgOWG2b9Pym1Lzt8k35R69Kjuconandq53aOMIbqbK2AwNPzIks9gu/Ay+80NsEhXkHME5FeBWfgojmIVHOJ+34De+hjFS2iTtr2uvGMaP7ApXWNXXDlLbhfa1h605H1gY/19Ff55RICr4fOvLzXFH+tMDGAhMjLQO73vvnW51B0dY3X26VD7DRFaTIvlaOrrYqJPODbYk9vyzmN74o6+O43lEjnlpIR66jlbQQcmq1GvAud1+Gbn32mNoFOXoMtQV4QeD33g7RGQVPbmq/CvpvrgowD5irWMKaHtig
Andy, 

I thought I had seen situations where an admin who has privs to both groups adds group A as a member to B. If A's owner doesn't have READ privs to B, they would simply not see B's subjects listed as indirect members of A (even though they were in fact members). This gave me hope this is what the VIEW permission was intended for... the ability to use a group as a component factor preserving anonymity of its members from those that lack READ. But thats not what you are saying... the purpose of VIEW seems simply a way of announcing the group's existence, though this permission alone implies no practical usability of the group to those that possess it, is that correct?

Do you have any suggestions on how to approach groups with sensitive membership (say FERPA) that might need to be used in construction of other non-sensitive groups? Or are you going to say there's not getting away from transitivity here?

-Rob


On Tue, Apr 10, 2018 at 11:41 AM, Andrew Morgan <> wrote:
On Tue, 10 Apr 2018, Jeffrey Williams wrote:

I'm working on a permissions model for a group of users to allow them to
use a group without seeing its membership.

When I apply the view permission for a group, the target user can see that
the group exists, can't see the membership, but also cannot add it to
groups of their own for use.

To contrast, a user with read permissions can add the group as a member of
target group.  The user with view permissions of that same target group can
see the member group, but not the resulting indirect member names(I think
only blank rows).

Should users have read permissions in order to add a group as a member?  Is
there something I can configure or have misconfigured to adjust that
behavior?

If your users need to add group FOO to one of their groups, then they need READ privileges on group FOO.

If a person with VIEW privileges were able to add group FOO to their own group, they could discover the membership of group FOO.

        Andy



--
Robert W. Gorrell
IT Manager, Identity and Access Management
University of NC at Greensboro
336-334-5954
PGP Key ID B36DB0CA

Archive powered by MHonArc 2.6.19.

Top of Page