0.0.1 • Published 4 years ago
@canyou/core v0.0.1
Use Cases
- crud
- create
- read
- update
delete
crud if owner
read if public
roles
- profiles
- auth obj
API
articles
rules []
allow: [*], provider: "login", operations: [read]
allow: [author], provider: "login", operations: [*]
drafts
rules []
allow: [author], provider: "login", operations: [*]
allow: [reviewer], provider: "login", operations: [read]
drafts.comment
rules []
allow: [*], provider: "login", operations: [*]
isAuthorized(subject, object, operation, scope)
where:
subject = user/service
object = fields needed for scope for the object in question
scope = rules/logic
look in scope if if has
allow == subject
provider //todo
&& operation == operation
0.0.2-beta.0
4 years ago
0.0.1
4 years ago