irmin
irmin copied to clipboard
Add access control to the REST API
Currently the REST API doesn't have access control. Need to add something before being able to use in the wild.
We still have a low-level CRUD API in Irmin 1.0 (using ocaml-webmachine
), that are used by the AO
and RW
backends. We could add some kind of oauth there, as it is well supported by `webmachine. Need to see how hard it is to expose some basic ones.
Not critical to have for 1.0.0 so moving the issue out of the Milestone.