Comments (3)
sails-permissions includes sails-auth as a dependency mainly because it relies on the User
model. You'll see in the setup instructions that the first step is running sails generate auth-api
; in your case, you could probably just skip this step. In config/policies, you'd replace 'passport', 'sessionAuth'
with your own. The sails-permissions policies expect to see req.user
, but I think that's it.
from sails-permissions.
In terms of the project's status, it currently is working for owner-only permissions. That is, an owner of an object automatically has full permissions for objects he/she creates, and other users cannot access objects they did not create. (I've implemented it in https://github.com/hashware/api and am basically UAT-ing it currently). This is fine for simple user account management, but obviously is not yet suitable for any case where you'd want users being able to share objects. I'll use the suggestions here (balderdashy/sails#2387) to implement that feature, which requires that I inspect objects after they are queried, but before they are returned to the client, in order to verify transitive role-level permissions.
from sails-permissions.
Ok, this answers the question nicely, thank you. Will spend some time trying to integrate it all.
from sails-permissions.
Related Issues (20)
- langa.ioβs server DNS address could not be found.
- RolePolicy Cannot set property 'owner' of undefined HOT 6
- Broken limit, skip and populate find blueprint HOT 1
- Unable to signup unless logged in with Admin account HOT 4
- JWT Support? HOT 13
- Installation HOT 2
- Examples source coded needs to be added HOT 1
- Transfer sails npm user to sails.
- Project Status HOT 3
- read permissions blacklist not working HOT 1
- "Remember Me" functionality HOT 2
- PermissionService relation owner fatal error
- ReferenceError: sails is not defined HOT 2
- Mysql DB connection error HOT 1
- populate()- populating tables permission issue
- Error with Model Name is Account HOT 1
- PermissionService Error HOT 1
- PermissionService.findTargetObjects returns all objects
- Ownership access control for action 'read' not works and package still active?
- TODO remove enum and support permissions based on all controller
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from sails-permissions.