Implement Authorization Mechanism

ai-cfia / membrane-backend

Membrane Backend: A centralized authentication service for Single Sign-On (SSO) enabling seamless token-based email verification across multiple client applications.

MIT License

1 stars 0 forks source link

Implement Authorization Mechanism #52

Open k-allagbe opened 11 months ago

k-allagbe commented 11 months ago

Description

Currently, Membrane handles authentication, allowing users to verify their identity. However, it lacks an authorization mechanism to manage permissions and control what resources a user can access.

rngadam commented 11 months ago

Related requirement: client apps should be able to tell membrane-backend which email domains are acceptable... and that should be subject to change whenever the client apps wants so should get passed through the initial JWT token from client app to membrane-backend.