rexfordnyrk
commented
5 years ago @Kulak Well that has been on my mind too. I think they are meant to be a skeleton for those who may want to implement roles based authorization of some sort for users. I believe the implementation were left open as various people may want to do it differently. So for now we have only the superuser and user roles. you can build upon it or get rid of it depending on your use case.
I see roles in DB schema, but I don't seem to find how it is used.
Bit more digging shows that there are built-in user and superuser roles. It seems that roles are internal to the application services. Am I correct?
Thank you