Authorization w/ Macaroons or Biscuits
Macaroons & Biscuits are two related ways to implement fine-grained authorization at scale. Macaroons work by granting an unforgable token that can be delegated and "attenuated" (i.e. further restricted) without action by the server. This can extend to third-party services as well. Biscuits work similarly, but use more public key crypto infrastructure rather than the HMACs that Macaroons use, allowing for the private keys to not be widely distributed. Biscuits also specify a Datalog implementation to specify attenuation logic in tokens that can simply be executed by the server. It would be nice to have recipes for both of these since they would be useful for handling requests in a Macaroon- or Biscuit-oriented API.
Andrew Elgert About 1 year ago
Authorization w/ Macaroons or Biscuits
Macaroons & Biscuits are two related ways to implement fine-grained authorization at scale. Macaroons work by granting an unforgable token that can be delegated and "attenuated" (i.e. further restricted) without action by the server. This can extend to third-party services as well. Biscuits work similarly, but use more public key crypto infrastructure rather than the HMACs that Macaroons use, allowing for the private keys to not be widely distributed. Biscuits also specify a Datalog implementation to specify attenuation logic in tokens that can simply be executed by the server. It would be nice to have recipes for both of these since they would be useful for handling requests in a Macaroon- or Biscuit-oriented API.
Andrew Elgert About 1 year ago
SvelteKit documentation template
https://velite.js.org https://github.com/svecosystem/paneforge/blob/main/sites/docs/contentlayer.config.js
Justin Ahinon About 1 year ago
SvelteKit documentation template
https://velite.js.org https://github.com/svecosystem/paneforge/blob/main/sites/docs/contentlayer.config.js
Justin Ahinon About 1 year ago
Cloudflare Stack (D1 + R2 + Lucia + Drizzle on Cloudflare Pages)
Since you're planning on working on R2, I think it would be cool to have stack with D1 setup as well. I think this is a good example, the only gripe I have with it is that it's using cfw-bindings-wrangler-bridge dependency which I don't think is needed: https://github.com/Tou-u/svelte-lucia-cf-d1 I like Turso, but I believe cloudflare stack with D1 has the highest cap for serverless/edge setup since the the server and db are always going to be at the same location so roundtrips are minimal. That's not the case with Turso & Vercel stack for example because infra is just different.
Milos Nikolic About 1 year ago
Cloudflare Stack (D1 + R2 + Lucia + Drizzle on Cloudflare Pages)
Since you're planning on working on R2, I think it would be cool to have stack with D1 setup as well. I think this is a good example, the only gripe I have with it is that it's using cfw-bindings-wrangler-bridge dependency which I don't think is needed: https://github.com/Tou-u/svelte-lucia-cf-d1 I like Turso, but I believe cloudflare stack with D1 has the highest cap for serverless/edge setup since the the server and db are always going to be at the same location so roundtrips are minimal. That's not the case with Turso & Vercel stack for example because infra is just different.
Milos Nikolic About 1 year ago
Lucia Google OAuth + Password Login (when used together)
I think it might be useful to show how both Google OAuth & Password look when together in projects - now with the removal of keys in Lucia v3.
Milos Nikolic About 1 year ago
Lucia Google OAuth + Password Login (when used together)
I think it might be useful to show how both Google OAuth & Password look when together in projects - now with the removal of keys in Lucia v3.
Milos Nikolic About 1 year ago