Granting permissions
(Getting Ready) Scenario description
This recipe describes how a developer or an integrator can change the permission of a user to access different platforms connected in INTER-IoT, by using the interface of the INTER-FW. In INTER-IoT, permissions of users define access capability to a whole platform. For example, in an INTER-IoT deployment with 6 different IoT platforms, a user can have accesss to only 2 of them, having no rights over the rest. The access can be defined as capability of reading data, inserting data or managing devices. This is especially useful in real scenario when there are large numbers of users with different organizations. As in all recipes related to the INTER-FW usage, the deployment has very simple requirements: a computer connected to the Internet and access to the Identity Server.
Recipe ingredients
Hardware: One computer, Internet access infrastructure
Software: An operative system. In the example we will use Ubuntu 18.04. INTER-FW deployed locally or in a remote server. Identity server deployed in reachable servers.
(How to Do it) Software deployment
Step 0. Login with an Administrator user.
Step 1. Click tab 'Users management' of the INTER-FW left menu bar.
Step 2. Click over a user to modify its configuration.
Step 3. A form appears showing the different details of the user:
Step 4. Go to the 'Permissions' tab
Step 5. Add or modify permissions applied to this user.
Step 6. Introduce the platform on which permissions will be assigned.
Step 7. Select "ALL" in the 'DeviceId' menu
Step 8. Introduce the permissions which the user will have over the platofm.
There is a limited number of of possible permissions:
- GET
- POST
- LIST
- LIST-TYPE
- PUT
- DELETE
Step 9. Click 'Save' to update the permissions.
(How it Works) Running and collecting results
Step 1. Log out and Log in with the modified user
Step 2. Use the API Store of the API Manager to check the new permissions schema over the platform.