Skip to content
This repository has been archived by the owner on Apr 24, 2023. It is now read-only.

access control #125

Open
abz53378 opened this issue Nov 12, 2018 · 0 comments
Open

access control #125

abz53378 opened this issue Nov 12, 2018 · 0 comments

Comments

@abz53378
Copy link
Contributor

Why

It's normal that every role is authorized to CRUD different data source. When giving the different rules, Canner component should generate the different UIs and have different behaviors such as disabled actions, hidden field, and disallow the specific pages (e.g. /posts/postID1).

Solution

Canner will get an object rules which records the authorization of the current user. The helper function rbac will check with the rules and keyName and return the corresponding properties of each component.

interface rules {
  [keyName: string]: Array<'create' | 'update' | 'delete' | 'read'>
}
function rbac({
  keyName,
  rules
} : {
  keyName: string,
  rules
}): {
  disabled: {
    create: boolean,
    update: boolean,
    delete: boolean
  },
  hidden: boolean
}
  • disabled property: Handled by component, each component should have it disabled UI, for example, a table component should hide the edit button and delete button.
  • hidden property: Handled In higher order component, if there is a hidden property, the component WON'T be rendered.

Rules Example

{
  posts: ['create', 'update', 'delete', 'read']
}

cc @wwwy3y3, @FrankYang0529, please take a look, does the format of rules match your backend plan or you prefer different format?
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@abz53378