Skip to content

GDrive API Privacy UAT for GDrive Sensor #15

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 10 commits into
base: main
Choose a base branch
from
Open

GDrive API Privacy UAT for GDrive Sensor #15

wants to merge 10 commits into from

Conversation

JEJodesty
Copy link
Collaborator

@JEJodesty JEJodesty commented Aug 12, 2025
edited
Loading

UAT Goal:
Only the GDrive Sensor’s Principles can share files & folders to be “Sensed” (Ingested by the GDrive Sensor)

  • GDrive Sensor’s Principles are Google (Drive) Accounts authorized by GDrive Sensor’s GCP Project that administrate GDrive Sensor’s Service Account

UAT Acceptance Criteria:
Sensor cannot ingest a Google Account’s personal files that is not shared with a Principal or the Organization
A Principal cannot share personal files with a Google Account’s Drive for Sensing that wasn’t already shared with them or the Organization.

Context:
The GDrive Sensor's Service Account's purview is of Files & Folders & Shared Drive shared with it by Principals (GDrive GCP Project Owners & Editors)

  • There is not a Single Drive for the entire Organization, just Shared Drives, Folders, & Files
  • Only Principals can share Files, Folders, & Drive within the purview of personal Drives which includes Drives, Folders, & Files shared with them
    • Principals can but should not can share their entire personal Drives which can only be done with the assistance of the API
  • As of now, Non-Principals would have to move File & Folder to a Folder or Drive shared with the Service Account by a Principal until blacklisting and/or their permissions are scoped.

@JEJodesty JEJodesty requested a review from lukvmil August 12, 2025 12:34
@JEJodesty JEJodesty self-assigned this Aug 12, 2025
@JEJodesty JEJodesty added the enhancement New feature or request label Aug 12, 2025
@JEJodesty JEJodesty changed the title Dev GDrive API Privacy UAT for GDrive Sensor Aug 12, 2025
@JEJodesty JEJodesty requested a review from nick-phl-7 August 12, 2025 12:38
@JEJodesty
filtered for exsistence of file in get_change_orientation
9be8cbc
@JEJodesty
Mimicking custom white & black list labeler using the GDrive Comments…
fff95e8 
… Feature
@JEJodesty
Enhanced 'Mimicking custom white & black list labeler using the GDriv…
a680579 
…e Comments Feature' (by integrated whitelist checks into geting items); distiguished google service versions; temp removed backfill_report from server backfill loop
@JEJodesty
moved privacy classes
148d636
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lukvmil lukvmil Awaiting requested review from lukvmil

@nick-phl-7 nick-phl-7 Awaiting requested review from nick-phl-7

Assignees

@JEJodesty JEJodesty

Labels
enhancement New feature or request
Projects
Collective Knowledge Organization Infrastructure
Status: No status
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@JEJodesty