-
Notifications
You must be signed in to change notification settings - Fork 419
Handling permission on a Kinto Server
Ethan Glasser-Camp edited this page Oct 26, 2016
·
4 revisions
Keeping up with permission proves to be something complex especially when you have lots of groups and when the data is very sensitive so that you don't want to make mistakes.
In order to make it easier and to avoid making mistakes we decided to have developers maintain a YAML file that will describe the permission model that will then be applied to the Kinto server with a script ran with administrative permission.
bucket1:
permissions:
write:
- principal1
- principal2
- /buckets/bucket1/groups/group1
read:
- principal1
- principal2
collections:
collection1:
data:
schema: file://./collection1_schema.json
permissions:
write:
- /buckets/bucket2/groups/group1
groups:
group1:
- principal1
- principal2
bucket2:
permissions:
write:
- principal1
- principal2
- /buckets/bucket2/groups/group1
read:
- principal1
- principal2
collections:
collection1:
permissions:
write:
- /buckets/bucket2/groups/group1
groups:
group1:
- principal1
- principal2
Join us on irc.freenode.net #kinto or on our Slack Workspace for more info.