34 RBC (Role Based Control)

Role based authorization

What problems do we need to solve for?

What is the user authorized to do? Which parts of our application care about this? How can we determine this? What's in the token? Contact between the UI and the API How do we make this easy to use? Wrapper Proposal component

Based on your permissions and login status, it either gives you access to a component or jsx or hides it. Must not use Redux Why? We don't want to force implementors into a specific state management system. ''' // The div only shows if you are logged in

// The div only shows if you are logged in AND have read permissions

'''

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

34 RBC (Role Based Control)

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally