-
Notifications
You must be signed in to change notification settings - Fork 26
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Example API #13
Comments
I tried some ideas around an API to make the blocks and the verifier here: https://github.com/CleverCloud/biscuit/blob/824db991d4b6919ebf0fce6d5c520c9ee7deaf4c/code/biscuit-poc/src/lib.rs#L418-L529 It looks like a good idea to have some default ways to represent rights and some constraints. Those will not bloat the resulting tokens, since their symbols will be part of the default symbol table. |
I added more information about the API in https://github.com/CleverCloud/biscuit/blob/master/DESIGN.md#implementation |
I like the add fact / add rule interface. I'm a bit more reserved about the resource / right / prefix thingy. While they map quite neatly to rest resources, I wonder how it would feel for higher-level concerns. I guess the best thing would be to compile a list of use cases and see how the proposed APIs would fit. |
do you have some interesting caveats to share from your macaroons, so I can see if they fit with this model? |
I'm gathering a few use cases. |
the API has now evolved a lot in the Rust and Java implementations, and the specification will be updated to follow that feedback |
The logic language we're exploring in #11 can already be useful, but it might be better to have an easy to use API that covers most use cases, and then allows people with more specific needs to use the low level tools. (the example is a bit rust-y but I'm also thinking of other languages).
Basic API:
Generating authority facts?
Generating a caveat?
generating a query?
The text was updated successfully, but these errors were encountered: