Currently the server has an extension point for controlling access to all resources - IRequestAuthorizer. This is a fairly basic extension point which takes in the given HttpContext and returns a bool. This is fine for the moment, but doesn't cover the various cases we have... i.e. access to the client vs an agents ability to post data to the server. We need to figure out what we want to do there.
nikmd23
commented
9 years ago
Currently the server has an extension point for controlling access to all resources -
IRequestAuthorizer. This is a fairly basic extension point which takes in the givenHttpContextand returns abool. This is fine for the moment, but doesn't cover the various cases we have... i.e. access to the client vs an agents ability to post data to the server. We need to figure out what we want to do there.