navs

NAV-04

Access Control

draft optional author:melvincarvalho

Introduction

The Base Access Control Strategy is: ACL with Roles, however several other strategies can be used:

Default Access Control Strategy

Role: Viewer

• Can view all
• can write to nothing

Role: Owner

• Can vew all
• can write to all

Servers can provision storage to owners, or look at the root directory of the URI to see if it matches the pubkey

Extended Access Control Strategies

This can be extended in future to many different types of access control in line with

• WebACL
• Casbin Supported Models

Use Cases

• Public Wikipedia (suggested by Jack)
• I wonder if it could be adapted to use web of trust so that only people in a certain list or people that you follow and follow you could log into a certain site (suggested by Ocean)

This site is open source. Improve this page.