stable URL: /l/datawarehouse-permissions

Permissions

This page has an internal companion page which might contain additional information.

DataWarehouse uses Django Auth Module with Users, Groups and Permissions to limit access.

All the read operations (GET Requests) are allowed without authentication. Write permissions (POST, PUT and DELETE) require specific permissions.

To read more about how Django’s permissions work, check the Auth Module documentation.

Creating an Account

Accounts are currently managed by us. If you want an account, you need to ask for one on the #team-kernel-cki Slack channel.

CKI Team

DataWarehouse contains a Group called ‘CKI Team’ which has all the write permissions necessary. When granting access to users, adding them to the ‘CKI Team’ is the recommended way to proceed.

Consuming the API

API Endpoints are also managed with this configuration. GET requests work unauthenticated, but you need to authenticate to do POST, DELETE, and other types of requests. See API auth documentation for more information.

Requesting API tokens

To request an API Token, please ask on the #team-kernel-cki Slack channel.

Then, anyone that has admin permissions (that means both the is_superuser and the is_staff flags set in the user record in the auth_user table) can go to the Django admin interface and create one for you by going to the “Tokens” collection under “Auth token” and clicking on “Add token” on the top right.