Description
This issue serves as a reminder to audit the permission mapping decisions made during the migration from the legacy authz system to the new framework.
When the LMS Permissions review begins, we must re-evaluate the "best-effort" matches implemented to ensure they align with the platform's security model and architectural standards.
Key Areas to Re-examine
- Legacy vs. New Parity: Review cases where a 1:1 match wasn't possible and a manual mapping was chosen.
- Content Library Decisions: Re-audit the specific logic applied to Content Library permissions to ensure consistency.
- MFE Impact: Ensure these mappings correctly authorize actions in the
frontend-app-learning and frontend-app-authoring interfaces.
Description
This issue serves as a reminder to audit the permission mapping decisions made during the migration from the legacy authz system to the new framework.
When the LMS Permissions review begins, we must re-evaluate the "best-effort" matches implemented to ensure they align with the platform's security model and architectural standards.
Key Areas to Re-examine
frontend-app-learningandfrontend-app-authoringinterfaces.