cylc-admin

Multi-User Functionality & Cylc Flow

Background

Pre Cylc8 there was some level of multi-user functionality offered by Cylc.

We had the “anonymous” user, the ability to scan other users suites and HTTP(s) endpoints had authorisation levels.

With the movement to the Cylc8 architecture we are planning to control suites via a UI Server running as the suite owner for UI purposes meaning that, from the Cylc Flow perspective we only need to authenticate the suite owner. All multi-user capability and authorisation happen at the UI Server.

Proposal

Cylc Flow should be a single user application with no ability to see or interact with other users workflows at all.

All multi-user functionality should be provided by the UI Server and, where applicable, made accessible to the cylc CLI tools via the GraphQL interface.