Access management in openIMIS
Role manangement:
Only super admin (is_admin==True) are able to add all roles, any other user with the authority to create user can only add his own role
Access management dimensions:
...
add HF user specific authorities
create an HF user table (or make PH user more generic)
link to HF
link to user
Update the claim to take a user instead of a CA
CA table should become a view for compatibility
id = User ID
uuid = user UUID
code = user login
lastname = User Name
other_name = User other name
dob = user DOB (to be added if not existing)
email_id = user email
phone = user phone
HF = HF user HF
Add village specific authorities for Enrollment support all kind of location for the user location (not only disctrict)
have an helper to check the right per level of location and adapt all queries to use it (could be a function that return a filter)
drop the EO table and change the EO village to UserVillage (or merged to Policyholder table into an External user table ? )
create a EO view for compatibility
...