roles – Page 2 – Tarik Billa

Angular2 routing canActivate and AuthGuard (JWT) with user role parameter

June 12, 2023 by Tarik

You can set the data parameter of the route with the role like this const appRoutes: Routes = [ { path: ‘account/super-secure’, component: SuperSecureComponent, canActivate: [RoleGuard], data: { roles: [‘super-admin’, ‘admin’] } }]; and then have this in canActivate of RoleGuard: canActivate(route: ActivatedRouteSnapshot, state: RouterStateSnapshot): boolean { let roles = route.data[“roles”] as Array<string>; return (roles … Read more

Future of roles for GADT-like type variables?

May 4, 2023 by Tarik

Author of the roles system here. I’m aware of no ideas that will move us forward in this direction. The problem is that we’d need to check a delicate property in order to ensure that the coercion is safe. Specifically, we want to be able to coerce e.g. HList [Age, Int, String] to HList [Int, … Read more

Best Role-Based Access Control (RBAC) database model [closed]

May 1, 2023 by Tarik

To my rather basic knowledge in that area, the basic actors of an RBAC are: Resources. Permissions. Users. Roles (i.e. Groups). Resources <- require -> (one or many) Permissions. Roles <- are collections of -> (one or many) Permissions. Users <- can have -> (one or many) Roles. The tables for such a model would … Read more

Role based authentication in the new MVC 4 Internet template using simplemembership

April 25, 2023 by Tarik

Found an answer here by Mehdi Golchin which seems to take care of: [Authorize(Roles=”admin,editor,publisher”)] If I also add this to the home controller: [InitializeSimpleMembership] Because this attribute is on the Accounts controller, SimpleMembership database gets initialize only after the first use of the accounts controller like login/register. Even when the current user gets logged in … Read more

Is setting Roles in JWT a best practice?

February 11, 2023 by Tarik

The official JWT site explicitly mentions “authorization” (in contrast to “authentication”) as a usecase for JWTs: When should you use JSON Web Tokens? Authorization: This is the most common scenario for using JWT. Once the user is logged in, each subsequent request will include the JWT, allowing the user to access routes, services, and resources … Read more

Ansible – Print message – debug: msg=”line1 \n {{ var2 }} \n line3 with var3 = {{ var3 }}”

February 2, 2023 by Tarik

debug module support array, so you can do like this: debug: msg: – “First line” – “Second line” The output: ok: [node1] => { “msg”: [ “First line”, “Second line” ] } Or you can use the method from this answer: In YAML, how do I break a string over multiple lines?

asp.net identity get all roles of logged in user

January 31, 2023 by Tarik

Controller.User.Identity is a ClaimsIdentity. You can get a list of roles by inspecting the claims… var roles = ((ClaimsIdentity)User.Identity).Claims .Where(c => c.Type == ClaimTypes.Role) .Select(c => c.Value); — update — Breaking it down a bit more… using System.Security.Claims; // …….. var userIdentity = (ClaimsIdentity)User.Identity; var claims = userIdentity.Claims; var roleClaimType = userIdentity.RoleClaimType; var roles = … Read more

MongoDB “root” user

January 23, 2023 by Tarik

The best superuser role would be the root.The Syntax is: use admin db.createUser( { user: “root”, pwd: “password”, roles: [ “root” ] }) For more details look at built-in roles.

Cannot drop PostgreSQL role. Error: `cannot be dropped because some objects depend on it`

January 3, 2023 by Tarik

DROP USER (or DROP ROLE, same thing) cannot proceed while the role still owns anything or has any granted privileges on other objects. Get rid of all privileges with DROP OWNED (which isn’t too obvious from the wording). The manual: […] Any privileges granted to the given roles on objects in the current database and … Read more