Seems like I increasingly need zones of permissions -- e.g. from one view, I'd like to use a generic API key, but from another (usually admin) view, each user needs to be issued their own API key. Seems like a good moment for owasp/phprbac (or a similar, less cumbersome, solution). Set up some default roles in the starter template, allow some configuration of roles in the admin panel, etc., etc.
Seems like I increasingly need zones of permissions -- e.g. from one view, I'd like to use a generic API key, but from another (usually admin) view, each user needs to be issued their own API key. Seems like a good moment for owasp/phprbac (or a similar, less cumbersome, solution). Set up some default roles in the starter template, allow some configuration of roles in the admin panel, etc., etc.