freesewing

History

Joost De Cock dcb5799f16 wip: Work on backend container		2022-12-17 17:40:16 +01:00
..
prisma	wip(backend): Tweaks to schema	2022-11-19 18:11:28 +01:00
public	wip(backend): Started work on v3 backend	2022-10-29 22:28:40 +02:00
scripts	wip(backend): More work on person/user	2022-11-12 20:36:47 +01:00
src	wip: Work on backend container	2022-12-17 17:40:16 +01:00
tests	chore: more in upstream changes	2022-12-04 13:19:42 +01:00
.gitignore	wip(backend): Work on signup flow	2022-10-31 17:54:49 +01:00
build.mjs	wip: Work on backend container	2022-12-17 17:40:16 +01:00
Dockerfile	wip: Work on backend container	2022-12-17 17:40:16 +01:00
example.env	wip(backend): Added MFA support	2022-11-17 20:41:21 +01:00
nodemon.json	wip(backend): Fixed async issues with tests	2022-11-10 20:09:30 +01:00
package.json	wip: Work on backend container	2022-12-17 17:40:16 +01:00
README.md	wip(backend): Work on routes, auth, and email templates	2022-11-05 18:55:59 +01:00

FreeSewing backend

This is a work in process to port the v2 backend to a new v3 backend.

It will be based on Express using Prisma with a SQLite database. Watch this space.

There are two different models to authenticate, as user, or with an API key.

The API keys have more granularity, their permission levels are:

0: No permissions. Can only login but not do anything (used for testing)
1: Read access to own people/patterns data
2: Read access to all account data
3: Write access to own people/pattern data
4: Write access to all own account data (this is the user role)
5: Read access to people/pattern data of all users (this is the bughunter role)
6: Read access to all account data of all users
7: Read access to all account data of all users + Write access for specific support functions (this is the support role)
8: Write access to all account data of all users (this is the admin role)

User roles map to these permission levels as such:

When using an API key above level 4, you need the following roles: