permitted
role based access control
usage
let policy = article: read: 'user' 'editor' write: 'editor' user: manage: 'admin' let user = 'admin' policy user // falseuser // trueuser // true
role inheritance
let hierachy = admin: 'user' 'editor' editor: 'user'let policy = article: read: 'user' write: 'editor' issue: report: 'user' '!admin' let user = 'admin' policy hierarchy user // trueuser // trueuser // false
the root role
root can do anything
let root = 'root' policy hierarchy
to specify another role other than root
, provide a third params to Policy consturctor
policy hierarchy 'admin'
attach extra data to user object
let user = 'role' 'elor' policy id: reqsessionidconsole
koa middleware
app app