Extend authorization/authentication system

Develop the authorizations system based on existing accesses and roles :

• Users
• Editors
• Granular not role related access
• Admins

Logged in users

• see user profile
• edit password
• edit user info
• edit related author info
• edit email (with email check)

Editors (all previous rights) [Admin side]

• add, edit transliterations (artifacts)
• add, edit linguistic annotations (artifacts)
• Can manage cdli tablet
• access to admin dashboard (restricted)

More granular access, not related to roles, but must have an account

• add, edit, delete catalogue entry [Admin side]
• Can Download Hd Images [User side]
  • restricted to a collection or not
• Can View Private Cat entries [User side] (Artifacts = catalogue)
• Can View Private Transliterations [User side]
• Can View Private Images [User side]

Admins ( all previous rights)

• add, edit users (no delete functionality)
• delete artifacts
• add, edit, delete most entities related to artifacts (eg collections, materials, etc)
• add, edit, delete postings (news and simple pages)
• add, edit, delete journal articles
• access the admin dashboard