Authorization w/ Macaroons or Biscuits
Macaroons & Biscuits are two related ways to implement fine-grained authorization at scale. Macaroons work by granting an unforgable token that can be delegated and "attenuated" (i.e. further restricted) without action by the server. This can extend to third-party services as well. Biscuits work similarly, but use more public key crypto infrastructure rather than the HMACs that Macaroons use, allowing for the private keys to not be widely distributed. Biscuits also specify a Datalog implementation to specify attenuation logic in tokens that can simply be executed by the server. It would be nice to have recipes for both of these since they would be useful for handling requests in a Macaroon- or Biscuit-oriented API.
Andrew Elgert 9 months ago
Authorization w/ Macaroons or Biscuits
Macaroons & Biscuits are two related ways to implement fine-grained authorization at scale. Macaroons work by granting an unforgable token that can be delegated and "attenuated" (i.e. further restricted) without action by the server. This can extend to third-party services as well. Biscuits work similarly, but use more public key crypto infrastructure rather than the HMACs that Macaroons use, allowing for the private keys to not be widely distributed. Biscuits also specify a Datalog implementation to specify attenuation logic in tokens that can simply be executed by the server. It would be nice to have recipes for both of these since they would be useful for handling requests in a Macaroon- or Biscuit-oriented API.
Andrew Elgert 9 months ago
SvelteKit documentation template
https://velite.js.org https://github.com/svecosystem/paneforge/blob/main/sites/docs/contentlayer.config.js
Justin Ahinon 10 months ago
SvelteKit documentation template
https://velite.js.org https://github.com/svecosystem/paneforge/blob/main/sites/docs/contentlayer.config.js
Justin Ahinon 10 months ago
Cloudflare Stack (D1 + R2 + Lucia + Drizzle on Cloudflare Pages)
Since you're planning on working on R2, I think it would be cool to have stack with D1 setup as well. I think this is a good example, the only gripe I have with it is that it's using cfw-bindings-wrangler-bridge dependency which I don't think is needed: https://github.com/Tou-u/svelte-lucia-cf-d1 I like Turso, but I believe cloudflare stack with D1 has the highest cap for serverless/edge setup since the the server and db are always going to be at the same location so roundtrips are minimal. That's not the case with Turso & Vercel stack for example because infra is just different.
Milos Nikolic 10 months ago
Cloudflare Stack (D1 + R2 + Lucia + Drizzle on Cloudflare Pages)
Since you're planning on working on R2, I think it would be cool to have stack with D1 setup as well. I think this is a good example, the only gripe I have with it is that it's using cfw-bindings-wrangler-bridge dependency which I don't think is needed: https://github.com/Tou-u/svelte-lucia-cf-d1 I like Turso, but I believe cloudflare stack with D1 has the highest cap for serverless/edge setup since the the server and db are always going to be at the same location so roundtrips are minimal. That's not the case with Turso & Vercel stack for example because infra is just different.
Milos Nikolic 10 months ago
Lucia Google OAuth + Password Login (when used together)
I think it might be useful to show how both Google OAuth & Password look when together in projects - now with the removal of keys in Lucia v3.
Milos Nikolic 10 months ago
Lucia Google OAuth + Password Login (when used together)
I think it might be useful to show how both Google OAuth & Password look when together in projects - now with the removal of keys in Lucia v3.
Milos Nikolic 10 months ago