Fund: Support for ABAC compatible permission classes

Support for ABAC compatible permission classes

2 years ago

👍

Currently permission classes seem to be geared towards a RBAC authorization scheme.

The permission classes defined for a resolver are run before the result of the resolver is available, i.e. the source object is None for the initial permission check. The source object is only available when checking permissions for fields of the source object. This makes it difficult to check for the ownership of the initial object, based on username or id for example.

It would be useful if the permission classes could implement permission checks for both before and after the resolver has been run and the result is available.

Strawberry GraphQL/strawberry

Support for ABAC compatible permission classes

How does funding with Polar work?

Backer

Contributor

Maintainer

Strawberry GraphQL/strawberry

Support for ABAC compatible permission classes

How does funding with Polar work?

Backer

Why does "Fund on completion" require GitHub login?

When is the invoice due for "Fund on completion"?

What happens if the issue is never completed?

Do I get any extra benefits by funding?

Do I get progress updates?

Contributor

Do I get a reward?

Is rewards guaranteed?

Maintainer

How can I get funding like this for my open source initiatives?