Check god credentials must respect root authoritahhh

bengler / checkpoint

Centralized identity store and authentication broker for web applications. It supports a number of authentication mechanisms and is provided via a http-interface.

MIT License

31 stars 2 forks source link

Check god credentials must respect root authoritahhh #6

Closed kytrinyx closed 12 years ago

kytrinyx commented 12 years ago

...

kytrinyx commented 12 years ago

https://github.com/bengler/checkpoint/blob/master/api/v1.rb#L148

This method makes sure that there is a god user, and that this user is god in the correct realm.

However, if the user is god in the realm named root then the user is god of all gods, and should be allowed to do anything anywhere.

skogsmaskin commented 12 years ago

Respect ma authoritahhh!

https://github.com/bengler/checkpoint/commit/77122eb2d3c82c6fa4901f4b65d25e2930b7be22