Removing permissions
(Getting Ready) Scenario description
This recipe describes how a developer or an integrator can change the permission of a user to access different platforms connected in INTER-IoT, by using the interface of the INTER-FW. In INTER-IoT, permissions of users define access capability to a single device. INTER-IoT allows a fine-grained permission management up to the level of single devices. This can customize up to the lower level the access management depending on the user, allowing applications where privacy and data protection is a major issue. As in all recipes related to the INTER-FW usage, the deployment has very simple requirements: a computer connected to the Internet and access to the Identity Server.
Recipe ingredients
Hardware: One computer, Internet access infrastructure
Software: An operative system. In the example we will use Ubuntu 18.04. INTER-FW deployed locally or in a remote server. Identity server deployed in reachable servers.
(How to Do it) Removing permission over a single device or a platform
Step 0. Login with an Administrator user.
Step 1. Click tab 'Users management' of the INTER-FW left menu bar.
Step 2. Click over a user to modify its configuration.
Step 3. A form appears showing the different details of the user:
Step 4. Go to the 'Permissions' tab
Step 5. Add or modify permissions applied to this user.
Step 6. Introduce the platform followed by the specific device on which permissions will be assigned.
Step 7. Introduce the permissions which the user will have over the device.
There is a limited number of of possible permissions:
- GET
- POST
- LIST
- LIST-TYPE
- PUT
- DELETE
Step 8. Click 'Save' to update the permissions.
(How it Works) Running and collecting results
Step 1. Log out and Log in with the modified user
Step 2. Use the API Store of the API Manager to check the new permissions schema over the device or sensor.