ash-project/ash_authentication
1
0
Fork 0
mirror of https://github.com/team-alembic/ash_authentication.git synced 2024-09-17 03:43:04 +12:00
Code Issues Projects Releases Packages Wiki Activity

docs: Add policies to the sample User resource, so that data is protected by default

Browse source
This commit is contained in:
Rebecca Le 2024-03-01 12:20:34 +08:00
parent 27f4502aba
commit 5a14db1d24
No known key found for this signature in database
GPG key ID: 45EC503B31710A41
1 changed files with 13 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
documentation/tutorials/getting-started-with-authentication.md
View file

@ -169,7 +169,8 @@ generation enabled.
defmodule MyApp.Accounts.User do
use Ash.Resource,
data_layer: AshPostgres.DataLayer,
extensions: [AshAuthentication]
extensions: [AshAuthentication],
authorizers: [Ash.Policy.Authorizer]
attributes do
uuid_primary_key :id
@ -204,12 +205,17 @@ defmodule MyApp.Accounts.User do
identity :unique_email, [:email]
end
# If using policies, add the folowing bypass:
# policies do
# bypass AshAuthentication.Checks.AshAuthenticationInteraction do
# authorize_if always()
# end
# end
# You can customize this if you wish, but this is a safe default that
# only allows user data to be interacted with via AshAuthentication.
policies do
bypass AshAuthentication.Checks.AshAuthenticationInteraction do
authorize_if always()
end
policy always() do
forbid_if always()
end
end
end
```