← Volver a todas las funcionalidades
02
Identity & Access Management
44 funcionalidades · 5 subsistemas
User identity, authentication, authorization, and role management across the entire federation hierarchy. Leverages Craft-Easy's comprehensive auth stack and capability-based access control.
User Registration & Profile
F02.01 Plataforma+
| ID | Status | Funcionalidades |
|---|---|---|
| F02.01.01 | Plataforma | Self-registration with email/phone verification |
| F02.01.02 | Plataforma | OAuth2 social login (Google, Microsoft, GitHub) |
| F02.01.03 | Planificado | Player profile (name, DOB, nationality, photo, playing position) |
| F02.01.04 | Planificado | Official profile (umpire grade, certifications, languages) |
| F02.01.05 | Planificado | Administrator profile (federation, role, mandate period) |
| F02.01.06 | Planificado | Multi-identity support (same person = player + umpire + coach) |
| F02.01.07 | Plataforma | Profile photo upload and management |
| F02.01.08 | Plataforma+ | Profile completion tracking and prompts |
| F02.01.09 | Plataforma | GDPR-compliant data export and deletion |
| F02.01.10 | Planificado | Player ID card generation (digital + printable) |
| F02.01.11 | Planificado | QR code identification for check-in at events |
Authentication
F02.02 Plataforma
| ID | Status | Funcionalidades |
|---|---|---|
| F02.02.01 | Plataforma | Email + OTP login |
| F02.02.02 | Plataforma | OAuth2 (Google, Microsoft) |
| F02.02.03 | Plataforma | TOTP/2FA (authenticator app) |
| F02.02.04 | Plataforma | WebAuthn passkeys |
| F02.02.05 | Plataforma | JWT ES512 token-based sessions |
| F02.02.06 | Plataforma | Refresh token rotation |
| F02.02.07 | Plataforma | Rate limiting and abuse detection |
| F02.02.08 | Plataforma | M2M OAuth2 client credentials for integrations |
Role & Permission Management
F02.03 Plataforma+
### Predefined Role Templates
| ID | Status | Funcionalidades |
|---|---|---|
| F02.03.01 | Plataforma | Capability-based access control (deny-by-default) |
| F02.03.02 | Plataforma | Role definition with capability sets |
| F02.03.03 | Plataforma | Role inheritance (e.g., national-admin inherits regional-admin) |
| F02.03.04 | Plataforma | Role assignment per user per tenant (+ OrgNode scope for regional/club roles) |
| F02.03.05 | Plataforma | Wildcard capabilities (e.g., competitions:*) |
| F02.03.06 | Plataforma | Sensitive field restrictions |
| F02.03.07 | Planificado | Petanque-specific role templates (see below) |
| F02.03.08 | Plataforma | Access debugging tools |
| F02.03.09 | Planificado | Temporary role grants (e.g., tournament director for one event) |
| F02.03.10 | Planificado | Role request and approval workflow |
Organization Hierarchy Access
F02.04 Plataforma+
Two-layer access model: **Standalone tenants** for hard isolation (every federation is independent), **OrgNodes** (districts → clubs) for scoping within national tenants.
| ID | Status | Funcionalidades |
|---|---|---|
| F02.04.01 | Plataforma | Tenant-scoped data isolation (every federation is a standalone tenant) |
| F02.04.02 | Planificado | Public APIs for cross-tenant interactions (license verification, ITC, squad submission) |
| F02.04.03 | Planificado | Linked player identity across tenants (same auth, separate profiles) |
| F02.04.04 | Plataforma+ | District-based scope filtering (district admin sees clubs/players in their OrgNode subtree) |
| F02.04.05 | Planificado | Delegation of authority (federation admin delegates to assistant) |
| F02.04.06 | Plataforma | Club OrgNode management within national tenant |
| F02.04.07 | Plataforma+ | Role assignment scoped to OrgNode (club president only manages their club) |
| F02.04.08 | Plataforma+ | Role assignment scoped to district OrgNode (district admin) |
Privacy & Consent
F02.05 Plataforma+
| ID | Status | Funcionalidades |
|---|---|---|
| F02.05.01 | Plataforma+ | GDPR data subject rights — GET /me/data-export, POST /me/data-deletion-request with anonymisation (PL-208) |
| F02.05.02 | Plataforma+ | Data retention policies — configurable per tenant via DataRetentionPolicy model (PL-208) |
| F02.05.03 | Planificado | Consent management — ConsentRecord model with marketing, photo_publication, data_sharing, analytics types (PL-208) |
| F02.05.04 | Planificado | Minor/youth data protection — ParentalConsent model with guardian verification, blocks consent for minors without parental approval (PL-208) |
| F02.05.05 | Planificado | Privacy settings per user — PrivacySettings embedded in PlayerProfile (profile visibility, results, ranking, club, DOB) (PL-105/PL-208) |
| F02.05.06 | Plataforma | Audit log of all data access (Craft Easy audit + use_revision = True) |
| F02.05.07 | Planificado | Cookie consent and tracking preferences |
Ninguna funcionalidad coincide con tus filtros.