Config-based API server framework

Project maintained by ctjong Hosted on GitHub Pages — Theme by mattgraham

Orion Documentation

User Roles

Here is a list of user roles supported by the library. These roles (except admin) are automatically assigned to the requester of each incoming request. A user can have multiple roles (i.e. can be both “member” and “owner”).

Role Description
guest Unauthenticated user. Assigned when no token is provided.
member Authenticated user. Assigned when a valid token is provided.
owner Owner of the target record. Assigned if the request is a GET in private mode OR if the request is a POST/PUT/DELETE and the target record is owned by the user.
admin Site administrator. There is no endpoint to assign this to users programmatically, so this needs to be set manually by database admin.