Authorization

How do define and use a new permission?

Add permission schema to the PermissionSet.ts file.
Add logic for how to assign this permission to a user in the getGivenPermissionSets.ts file.
Use the permission in the application code:

Example: Can the current user read a resource of type "myResource" with id "1"?

import { authenticate } from "@/authentication/authenticateAndAuthorize";

const authentication = await authenticate();
if (
  !authentication.authorize("myResource", "read", [{ key: "id", value: "1" }])
)
  throw new Error("Forbidden");

// Do something

Example: Authenticate and authorize a server action

import { authenticateAction } from "@/authentication/authenticateAndAuthorize";

export const createMyResourceAction = async () => {
  const authentication = await authenticateAction("createMyResourceAction");
  authentication.authorizeAction("myResource", "create");

  // Do something
};

Example: Authenticate and authorize a page view

import { authenticatePage } from "@/authentication/authenticateAndAuthorize";

export default async function Page({ params }) {
  const { id } = await params;

  const authentication = await authenticatePage("/admin/myResource/[id]");
  authentication.authorizePage("myResource", "create", [
    { key: "id", value: id },
  ]);

  // Render the page
}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

authorization.md

authorization.md

Authorization

How do define and use a new permission?

Example: Can the current user read a resource of type "myResource" with id "1"?

Example: Authenticate and authorize a server action

Example: Authenticate and authorize a page view

Files

authorization.md

Latest commit

History

authorization.md

File metadata and controls

Authorization

How do define and use a new permission?

Example: Can the current user read a resource of type "myResource" with id "1"?

Example: Authenticate and authorize a server action

Example: Authenticate and authorize a page view