Use Case: Access Control

Summary

• Scope: Map Editor
• Level: User Goal
• Actors: User
• Brief: User is restricted to access their own maps.
• Status: Done
• Assignee: Justus
• Criticality: System Critical

Scenarios

• Precondition:

  • The user is logged in and wants to open a map.

• Main success scenario:

  • The user is able to open their maps.

• Error scenario:

  • The user attempts to open a map he should not have access to by entering map IDs in the URL.
  • The user sees a 404, indicating the map does not exist or the user does not have permission to access it.

• Postcondition:

  • The user is shown the map he clicked on and is able to view and interact with it.

• Non-functional Constraints:

  • The authorization process should be invisible to the users unless an error occurs.

Leftovers

• None

Links

• #480

Notes

• TODO: include info table from issue #480