Notes on permission system

In order to allow wide range of users to access your company’s DNSaaS the django-powerdns-dnssec offers a permission system to prohibit unwanted changes. If you do not need any restrictions, simply register all your users as superusers in django.

The permissions are controlled primarily by the ‘owner’ field of a Domain or Record, which is automatically set to the user that created the object. By default this is the only user that can modify it. Adding records to domains and subdomaining domains is also restricted.

TODO:

• Authorisations
• Requests