moonfire-nvr/ui-src
Scott Lamb fda7e4ca2b add concept of user/session permissions
(I also considered the names "capabilities" and "scopes", but I think
"permissions" is the most widely understood.)

This is increasingly necessary as the web API becomes more capable.
Among other things, it allows:

* non-administrator users who can view but not access camera passwords
  or change any state
* workers that update signal state based on cameras' built-in motion
  detection or a security system's events but don't need to view videos
* control over what can be done without authenticating

Currently session permissions are just copied from user permissions, but
you can also imagine admin sessions vs not, as a checkbox when signing
in. This would match the standard Unix workflow of using a
non-administrative session most of the time.

Relevant to my current signals work (#28) and to the addition of an
administrative API (#35, including #66).
2019-06-19 15:34:20 -07:00
..
assets preliminary web support for auth (#26) 2018-11-27 11:08:33 -08:00
lib honor removing a time constraint 2019-02-19 13:42:26 -08:00
favicon.ico favicon: security camera in orange/red circle 2018-03-12 22:47:44 -07:00
index.js A little more UI refactor, cleanup, eslint more strict (#54) 2018-03-25 22:18:56 -07:00
NVRApplication.js add concept of user/session permissions 2019-06-19 15:34:20 -07:00