orbit-db-access-controllers icon indicating copy to clipboard operation
orbit-db-access-controllers copied to clipboard

Published 20 hours ago verified publisher icon orbitdb-archive

Support access revocation in OrbitDB access controller

Open haadcode opened this issue 6 years ago • 2 comments

This PR will add access revocation support for the OrbitDB Access Controller.

This PR, and approach in general, is still very much WIP.

haadcode avatar Nov 23 '18 13:11 haadcode

Depends on https://github.com/orbitdb/orbit-db-access-controller-store (new repo coming along with this PR)

haadcode avatar Nov 23 '18 13:11 haadcode

There's still bunch of things to consider here and more tests need to be added (especially for access revocation under network partition / when DBs diverge).

I think it'd make sense to reduce the complexity down a bit and remove the "capabilities" part (=various "access" levels) and consider access to write either granted or revoked. The different roles/access levels don't make much sense as they're tied to canAppend()'s functionality (eg. canAppend determines which ac level is allowed to append, so it's always a fixed level/set of levels).

haadcode avatar Nov 23 '18 14:11 haadcode