Implement role authorization
Closed this issue · 0 comments
robid98 commented
Role authorization for Restaurant Simulation
-
In the Restaurant Simulation application two roles need to exist. One role is for the admins and one for the clients.
-
Role names: restaurant-simulation-admin and restaurant-simulation-client.
-
Based on this roles a user is allowed to access Restaurant Simulation functionalities or not.
-
Roles will be stored in the Auth0.
-
The claim that store the roles will be named : RestaurantSimulationRoles.
-
Create new roles in the Auth0
-
Append user roles to access_token and id_token
-
Make policies for Admin Role, Client Role, and AdminAndClient Role
-
Proctect routes that are in the AuthenticationController with the new policies
-
Integration tests
Acceptance criteria
- Integration tests