@climba03003/fastify-endpoint-rbac
Advanced tools
This plugin used to manage the endpoint role-base access control. It will collect all the specified roles and you can specify how to check the access control globally or per-route.
This plugin used to manage the endpoint role-base access control. It will collect all the specified roles and you can specify how to check the access control globally or per-route.
npm install @climba03003/fastify-endpoint-rbac --save
yarn add @climba03003/fastify-endpoint-rbac
import FastifyRBAC from '@climba03003/fastify-endpoint-rbac'
fastify.register(FastifyRBAC, {
// how to retrieve account roles
retrieveAccountRoles(request, reply) {
return [] // must return array or promise array
},
// how to check rbac globally
checkRBAC(routeRoles, accountRoles) {
return true // must return boolean or promise boolean
},
// change the error message when return 403
forbiddenMessage: 'No Privilege'
})
fastify.get(
'/',
{
config: {
rbac: {
// specify roles for this route
roles: ['index:read'],
// skip rbac check at early stage even if roles is specified
skip: false,
// route base rbac check
checkRBAC(routeRoles, accountRoles) {
return true // must return boolean or promise boolean
},
}
}
}
)
// Map of route and roles
fastify.rbac.routeRBAC
// Map {
// GET:/ => ['index:read']
// }
// Array of all roles
fastify.rbac.roles
// ['index:read']
FAQs
This plugin used to manage the endpoint role-base access control. It will collect all the specified roles and you can specify how to check the access control globally or per-route.
We found that @climba03003/fastify-endpoint-rbac demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub postponed a new billing model for self-hosted Actions after developer pushback, but moved forward with hosted runner price cuts on January 1.
Research
Destructive malware is rising across open source registries, using delays and kill switches to wipe code, break builds, and disrupt CI/CD.
Security News
Socket CTO Ahmad Nassri shares practical AI coding techniques, tools, and team workflows, plus what still feels noisy and why shipping remains human-led.