Django generates a set of permissions for each model. All permissions are prefixed with
For example, for the
Product model, the following permissions are generated:
Hermine only uses a subset of these permissions to control access to the different views, but you can still use them if you want fine control over the access to the admin.
Permissions used by Hermine
Hermine uses permissions according to the following rules:
cube.view_releasegives access to a release summary, SBOM (view and export), validation state and obligations.
cube.change_releaseallows to change the release details and exploitation mode.
the special permissions
cube.change_release_bomis used for uploading releases SBOM.
cube.change_*are used for other views.
The following groups are created by default: