Pavewise - Style Guide & More
  • At a Glance
    • Tech Stack
  • Frontend
    • Overview
    • Config & Tooling
      • Editor / IDE setup
        • General
        • Snippets
        • Formatting
          • "Format on save"
          • Prettier (.prettierrc)
        • Linting
          • ESLint (.eslintrc.json)
        • TS Config (tsconfig.json)
      • Browser setup
      • Command Line setup
        • Aliasing (.zshrc, etc.)
    • Workflow
    • Basic Guidelines
      • JavaScript
      • React
      • TypeScript
    • Naming
      • Extensions
      • Folders/Directories
      • Filenames
      • Declarations
    • Our Systems
      • Overview
      • Pages
        • File-based routing
        • "Route" folder
      • Components
        • Overview
        • MUI
          • General
          • Styling choices
          • Choosing Components
        • StorybookJS
      • State Management
        • General State Strategy
        • Client Global State
        • Server Global State
        • URL state
      • Data Fetching & APIs
        • "api" object
        • "Router" folder
      • Forms
      • Charts
      • Tables
    • Additional
      • Styling
      • Helpful websites/tools
    • // TODO
      • Component Architecture
      • Component Structure
      • Creating a New Component...
    • 🥳 Onboarding
    • 👩‍🏫 Learning Resources
      • ReactJS
        • Function Declarations vs Function Expressions
      • TypeScript
      • (Global) State Management
      • Charting Libraries (JS)
      • (Not Implemented)
        • StorybookJS
        • NextJS
  • API
    • Overview
    • Introduction
    • Versioning
    • Authentication
    • HTTP Methods
    • Endpoints
    • Query Params
    • Request & Response Format
    • Error Handling
    • Status Codes
    • Database Relationship Types
    • Additional Topics
      • Rate Limiting
    • 💻 Examples
    • 👩‍🏫 Learning Resources
  • Backend
    • Overview
    • Workflow
    • Topics
    • File Setups
      • Routes (routes.rb)
      • Schema (schema.rb)
      • Models (models/x.rb)
      • Controllers (x_controller.rb)
        • Database Relationships
        • Controller Actions
          • :index
          • :show
          • :create
          • :update
          • :destroy
        • Controller Concerns
          • :index
            • QueryParamsProcessor
          • :show (none)
          • :create (none)
          • :update (none)
          • :destroy (none)
        • Controller [X]
          • :index (none)
          • :show (none)
          • :create (none)
          • :update (none)
          • :destroy (none)
        • Controller [Y]
          • :index (none)
          • :show (none)
          • :create (none)
          • :update (none)
          • :destroy (none)
        • Other Information
          • Multi-table Data Retrieval via Single Frontend Request
    • Database Tables
      • Roles / Permissions
    • Ruby gems
    • AI
    • 👩‍🏫 Learning Resources
      • Ruby on Rails (Rails)
  • Database
    • Overview
    • 👩‍🏫 Learning Resources
  • Dev Ops
    • Overview
    • 👩‍🏫 Learning Resources
Powered by GitBook
On this page
  • Example Setup
  • Frontend (e.g. allowing custom roles per company)
  • Backend
  • Single role per user
  • Many roles per user
  1. Backend
  2. Database Tables

Roles / Permissions

PreviousDatabase TablesNextRuby gems

Last updated 1 year ago

Just putting this here for now...

Overview

  • Current

    • "role.name"-based authorization

  • Future

    • "role.permissions"-based authorization

      • Example setup

      • Implementation versions:

        • (user.role)

        • (user.roles)

Example Setup

Frontend (e.g. allowing custom roles per company)

Custom roles like this could be in addition to our "default roles": Admin, Project Manager, Read-only, etc.

Backend

## example implementation of limited / field supervisor-type role ("canOnlyIfOriginatedData")
## (Admin 'canOnlyIfOriginatedData' fields would be 'false')
{
    "name": 'Field Supervisor',
    "description": 'This role can view all data, and can conditionally create, update, and delete data',
    "permissions": {
        'projects': {
            'canCreate': false,
            'canRead': false,
            'canUpdate': false,
            'canDelete': false,
            'canUpdateRelationships': false
        },
        'equipment': {
            'canCreate': true,
            'canRead': true,
            'canUpdate': true,
            'canDelete': true,
            'canOnlyIfOriginatedData': true,
        },
        'production_goals': {
            'canCreate': true,
            'canRead': true,
            'canUpdate': true,
            'canDelete': true,
            'canOnlyIfOriginatedData': true
        },
        # ...
    }
}

Single role per user

^ ...validating the 'permissions' structure to maintain integrity

Many roles per user

Frontend
Backend
Single role per user
Many roles per user