qsys
06/15/2017, 11:41 PMagartha
06/16/2017, 12:07 AMqsys
06/16/2017, 10:34 AMapproved
and only approved
users can do something (so, one has to check if the approved
field is set, and it's set to true)
2. In auth0, one stores roles and permissions and groups of a user. Some users can access other stuff than others. In this case, permission is based on the roles set in something like app_metadata/roles
.
The reason to do this is: a user admin can handle auth0, but may not be able to work with graph.cool. So I prefer to keep all the user-specific things/data in auth0.agartha
06/16/2017, 10:36 AMagartha
06/16/2017, 10:37 AMagartha
06/16/2017, 10:38 AMqsys
06/16/2017, 12:49 PMagartha
06/16/2017, 1:35 PMqsys
06/16/2017, 2:05 PMagartha
06/16/2017, 2:06 PMqsys
06/16/2017, 2:06 PMqsys
06/16/2017, 2:06 PMagartha
06/16/2017, 2:07 PM