bkappes
commented
8 years ago Can we do this through Linux user permissions? I have created system-level user accounts (no login, no home directory) on the ADAPT JBOD for most users. This allows me to create directories into which they can move files through the samba server, but they cannot log in to create directories or files outside their allowed permissions, nor can they perform any arbitrary work on the server. Could we use a similar scheme: any new ADAPT user is added as this type of system-level user and added to the group adapt-read if they have read permissions and adapt-write if they have write permissions?
Requests to mutate the store must be accompanied by a user token that can be used to validate both the identity of the user, and associated permissions.
Firebase gives us the option of using 3rd-party authentication agents like Google, GitHub and Facebook, but we still need a mechanism to describe the privileges to be granted to each user. Ideally this should support both users and roles to simplify user management.