phalcon-json-api-package icon indicating copy to clipboard operation
phalcon-json-api-package copied to clipboard
verified publisher icon gte451f

Object Level Security

Open gte451f opened this issue 7 years ago • 0 comments

Let's add in some security tools that allow developers to more easily and reliably apply security rules in common situations. The design goal is to make it possible for developers to define a minimum set of rules that will enforce security rules in a variety of situations.

Rules

  • READ Rules when getting 1 or more records from an end point
    • reuse filter rules when side loading data
  • Block/Allow rules to Edit/Delete/Insert records

Implement Edit/Delete/Insert records as hooks before the operation is performed. Can we ready in these rules from a common syntax or from the READ rules?

gte451f avatar Apr 24 '18 02:04 gte451f