3. What are best practices for authorization in web apps ? spray/akka-http

What are best practices for authorization in web apps ? spray/akka-http

Good question, as a beginner I'm wondering that as well. Roles seem to be only usable for small projects, otherwise you can get checks like (user.hasRole("foo") || user.hasRole("bar") || user.hasRole("YetAnotherRole") || ...).

Permission/activity based authorization (flat RBAC) seems to be more flexible: users are assigned roles, and permissions are assigned to roles. The checks within the application are against the permission not the role, and can be changed without recompiling the application. If a role needs new permissions just assign them in the backend, if a specific user needs new permissions it's possible to create a new role with appropriate permissions etc.

But what's with more complex permissions: * Superadmin can delete everyone except himself. * Admins can delete all users but not themself or other admins. * Manager can only delete users that he manages but not himself.

And then there is the "problem" of what is actually authorization, and what is actually a business rule or validation rule. Sometimes the line between authorization and business rules seems blurred.

/r/scala Thread Parent
Previous
Next

Recently removed from /r/scala

Can someone please explain "implicit" to me like I'm five? Endless4s: a new Scala library to describe event sourced entities using tagless-final algebras, running with built-in implementations for Akka Scalaz removed from community build Starts Oct 18: New Online Instructor-Led Introduction to Scala Course What do employers look for when hiring junior scala devs? Critique my Scala program

More Random Comments

Monthly "non-memes", literal egg, bingo, and others Megathread Queen's University Belfast makes £50m from international students Can someone please explain "implicit" to me like I'm five? Andrew Yang says the two-party system fuels extremism: "The people are losing" Can’t maintain diet and it sucks. Is it worth it eating healthy??only live once Help to change to a different scene when on a specific one Upvote if you think millennials are really seriously doomed. The Babylon Bee Presents An Exclusive Inside Look At 15 Upcoming Star Wars Shows Redditors from foreign countries, what's something us Americans aren't ready to hear? HasanaAbi has been banned California Announces Universal Indoor Mask Mandate, Effective Wednesday Official Q&A for Tuesday, December 14, 2021 Police officer gets dragged by suspect in car Regarding the caller and the tip he made about the nurse/carer Why are we so convinced that aliens are smarter and more advanced species than the humans?