Skip to content

Auto-role creation#1630

Open
shangyian wants to merge 8 commits intoDataJunction:mainfrom
shangyian:namespace-role
Open

Auto-role creation#1630
shangyian wants to merge 8 commits intoDataJunction:mainfrom
shangyian:namespace-role

Conversation

@shangyian
Copy link
Collaborator

@shangyian shangyian commented Jan 1, 2026
edited
Loading

Summary

This implements the first phase of the RBAC migration strategy from issue #1575. When namespaces are created, we now automatically create owner roles and assign them to the creator.

This prepares the codebase for RBAC without changing current behavior. Since default_access_policy = "permissive", existing access patterns remain unchanged - everyone can still access everything. The roles are simply "staged" in the database for when RBAC enforcement is enabled.

Test Plan

Deployment Plan

@netlify
Copy link

netlify bot commented Jan 1, 2026
edited
Loading

Deploy Preview for thriving-cassata-78ae72 canceled.

Name Link
🔨 Latest commit 8d27b7d
🔍 Latest deploy log https://app.netlify.com/projects/thriving-cassata-78ae72/deploys/69589fcdfa3f7100089500e5

@shangyian shangyian force-pushed the namespace-role branch 2 times, most recently from 4900aef to e4c0d4b Compare January 2, 2026 04:27
@shangyian shangyian marked this pull request as ready for review January 3, 2026 14:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@shangyian

Comments