Deny support using `!`?

Question

Deny support using `!`?

dereuromark opened this issue 6 years ago · 11 comments

Is this something people see as useful to have for Authentication?

tinyauth_allow.ini

Users = index, view ; Public access to index and view action
Extras.Offers = *, !delete ; All expect delete action are public

If not we can close this again

Answer 1 · 2019-01-07T09:16:22.000Z

what happened id someone uses 👇 ?

Extras.Offers =!delete,  *

( change order )

Answer 2 · 2019-01-07T09:26:01.000Z

Same, the order in the file would not matter.

Answer 3 · 2019-01-16T14:58:56.000Z

Something similar could be made possible for Authorization (ACL):

tinyauth_acl.ini

[Groups]
* = admin, user ; All roles have access by default to all actions
adminOnly = !user ; But then restrict this action to only admins

Answer 4 · 2019-01-16T15:22:57.000Z

is this for Authorization?? or Authentication ??
for authorization this can be very useful , but for Authentication no idea

Answer 5 · 2019-01-16T15:27:36.000Z

I clarified it per example now.

Answer 6 · 2019-01-16T15:28:51.000Z

If someone wants to implement this as minor, feel free to do so.
Should be a simple addition with tests and docs.

Answer 7 · 2019-01-27T04:24:44.000Z

I checked, the syntax with ! is only valid with quotes around: Extras.Offers = "!delete", * etc.
Not sure if that is then still worth persuing..
We might have to use a different format than INI maybe?

Answer 8 · 2019-01-27T16:42:24.000Z

Done via #96

Answer 9 · 2019-01-27T21:06:24.000Z

I checked, the syntax with ! is only valid with quotes around:

👎 for force quotes

Not sure if that is then still worth persuing..

no now

Answer 10 · 2019-01-27T21:13:11.000Z

dont use deny then. only needed for this

Answer 11 · 2019-01-27T22:39:25.000Z

do u have a better idea? how we can solve it?