[UXPROD-3915] Support limiting applicable permissions by geolocation (geofencing) Created: 07/Dec/22 Updated: 30/Nov/23 |
|
| Status: | Draft |
| Project: | UX Product |
| Components: | None |
| Affects versions: | None |
| Fix versions: | None |
| Type: | New Feature | Priority: | TBD |
| Reporter: | Brooks Travis | Assignee: | Unassigned |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | back-end, front-end, okapi, permission_set, permissions, security, security-reviewed, stripes | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original estimate: | Not Specified | ||
| Issue links: |
|
||||||||||||
| Potential Workaround: | Multiple user accounts for each operator based on service point access | ||||||||||||
| Development Team: | None | ||||||||||||
| PO Rank: | 0 | ||||||||||||
| Rank: Cornell (Full Sum 2021): | R5 | ||||||||||||
| Description |
|
Current situation or problem: FOLIO currently supports assigning permissions to users. Users may then perform any operation for which they have permission from anywhere. However, it is desirable to be able to limit certain operations to a particular geolocation, determined by some geolocation mechanism (eg. IP address, device location/GPS, installed browser certificate, SAML assertion, etc.) In scope
Out of scope
Use case(s) Proposed solution/stories Links to additional info Questions |
| Comments |
| Comment by Craig McNally [ 08/Dec/22 ] |
|
Brooks Travis This appeared in the security team's board since it has the security tag. If you'd like us to weigh-in on this or provide guidance let us know. |