A group associates a name to a list of principals <api-principals>
. It is useful in order to handle permissions. Groups are defined in buckets.
A group is a mapping with the following attributes:
data
: attributes of the group objectid
: the group object idlast_modified
: the timestamp of the last modificationmembers
: a list ofprincipals <api-principals>
permissions
: theACLs <ACL>
for the group object (e.g who is allowed to read or update the group object itself.)
When used in permissions definitions, the full group URI has to be used:
{
"write": ["/buckets/blog/groups/authors", "github:lili"],
"read": ["system.Everyone"]
}