custom policies with validators
I am writing an application to manage ACLs. ACL are "permissions" which apply to "users". "Permission" belong to "Perimeter", and "User" belong to many "Perimeter".
For example : Permission "read" on perimeter "application 1". And User "john" belong to "application 1".
User are authenticable. So they can connect to the application and I want to allow users to update/create/delete ACLs which use "Permission" belong to same perimeter as user belong to.
If policies include validators, I would be able to create a policy to restrict access to user where acl.permission.perimeter equals user.perimeter.
Is it possible to implement it ?
2 Replies
Hello @Matthieu MARC
Thanks for sharing your thoughts. We are currently working on a quick way to do "onwership-based access" (the PR is currently in review 🤞).
However this feature will work on 1-level relationship only: "User can edit Item if item.user equals user".
I really think that we should implement a custom guard where you can put your custom logic. I put it in the backlog but unfortunately it is not currently available
Thanks for your response. I will wait 🙂