Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

How sophisticated does my authorization system have to be? Do I need to have ACLs to control who is allowed to read and write data?

ACLs allowed Authorization CONTROL Data read sophisticated system write
0
Posted

How sophisticated does my authorization system have to be? Do I need to have ACLs to control who is allowed to read and write data?

0 CommentsAdd a Comment

1 Answer

0

You need to make sure that only the original publisher of a document is allowed to change or replace that document. You don’t need any other form of authorization. Note that consumers must be able to authenticate the contents of documents they retrieve, to make sure the data they get are the data the publisher published. This is a distinct idea from authorization, though you may find it convenient to have overlap between the mechanisms for the two.

0 CommentsAdd a Comment
What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123