Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Access policy defaults proposal - which policies should be created by default for each project? #1255

Open
reshmakh opened this issue Dec 10, 2022 · 3 comments
Open

Access policy defaults proposal - which policies should be created by default for each project? #1255

reshmakh opened this issue Dec 10, 2022 · 3 comments
Assignees
@rahul1
Labels
auth Authentication and authorization features and fixes enhancement New feature or request
Milestone
June 30, 2024

Comments

@reshmakh
Copy link
Member

reshmakh commented Dec 10, 2022
edited by rahul1

Goal is to prepare for V4 - where AccessPolicies will be required by default on all ProjectMembership

Currently, Access Policies need to be created and applied to each ProjectMembership.

Consider setting up default access policies for each project as part of initialization.
Consider requiring project memberships to have an AccessPolicy
@reshmakh reshmakh added auth Authentication and authorization features and fixes enhancement New feature or request labels Dec 10, 2022
@reshmakh
Copy link
Member Author

Proposal: we should enable 3 default access policies for all new projects:

  1. Patient - use this as default access policy
  2. Admin - Read/Write all project resources
  3. Practitioner - Read/write all clinical resources, but no Medplum specific resources

Todo: create policies

@codyebberson
Copy link
Member

I recommend splitting "Practitioner" into "MD" and "non-MD". Not sure how we should name those.

@reshmakh reshmakh changed the title Access policy defaults - should we require access policies? Access policy defaults proposal - which policies should be created by default for each project? Oct 26, 2023
@codyebberson codyebberson mentioned this issue Apr 28, 2024
Open
@rahul1
Copy link
Member

rahul1 commented May 6, 2024

Proposed default access matrix:
https://docs.google.com/spreadsheets/d/1xdMuS0mDPHOokJu9XZoIPpd1r_ATd1EahvI0K5P39n4/edit?usp=sharing

@reshmakh reshmakh modified the milestones: May 31st, 2024, June 30, 2024 Jun 2, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rahul1 rahul1

Labels
auth Authentication and authorization features and fixes enhancement New feature or request
Projects
Medplum Product Roadmap
Status: 🔖 Ready to Start
Milestone
June 30, 2024
Development

No branches or pull requests
3 participants
@codyebberson @rahul1 @reshmakh