Create a permissions listing that allows the user to create nested permissions
Allow managing permissions via IAM policy
Integrate the permissions into the various auth APIs
OAuth2 - as scopes
OpenID Connect - as scopes (will need some work)
LDAP - as a custom overlay/property - maybe queryable?
SAML - custom properties? Not great support here.
REST API endpoint for checking permission for current user
Add a comprehensive permissions API.
* Create a permissions listing that allows the user to create nested permissions
* Allow managing permissions via IAM policy
* Integrate the permissions into the various auth APIs
* OAuth2 - as scopes
* OpenID Connect - as scopes (will need some work)
* LDAP - as a custom overlay/property - maybe queryable?
* SAML - custom properties? Not great support here.
* REST API endpoint for checking permission for current user
Add a comprehensive permissions API.
Rest API is serviceable using the new IAM permissions interface.