add concept of user/session permissions

(I also considered the names "capabilities" and "scopes", but I think "permissions" is the most widely understood.) This is increasingly necessary as the web API becomes more capable. Among other things, it allows: * non-administrator users who can view but not access camera passwords or change any state * workers that update signal state based on cameras' built-in motion detection or a security system's events but don't need to view videos * control over what can be done without authenticating Currently session permissions are just copied from user permissions, but you can also imagine admin sessions vs not, as a checkbox when signing in. This would match the standard Unix workflow of using a non-administrative session most of the time. Relevant to my current signals work (#28) and to the addition of an administrative API (#35, including #66).
2025-12-01 22:02:34 -05:00 · 2019-06-19 15:17:50 -07:00
parent d8b8d5d5e0
commit fda7e4ca2b
23 changed files with 336 additions and 741 deletions
--- a/scripts/install.sh
+++ b/scripts/install.sh
@@ -106,7 +106,8 @@ After=network-online.target
 ExecStart=${SERVICE_BIN} run \\
    --db-dir=${DB_DIR} \\
    --ui-dir=${LIB_DIR}/ui \\
-    --http-addr=0.0.0.0:${NVR_PORT}
+    --http-addr=0.0.0.0:${NVR_PORT} \\
+    --allow-unauthenticated-permissions='view_video: true'
 Environment=TZ=:/etc/localtime
 Environment=MOONFIRE_FORMAT=google-systemd
 Environment=MOONFIRE_LOG=info