Hono
authorization #2452
Replies: 1 comment 3 replies
-
|
Yes you can protect routes by using middleware. Basic, Bearer, JWT middleware is built in but for casbin you may have to create your own. https://hono.dev/middleware/builtin/basic-auth import { Hono } from 'hono'
import { basicAuth } from 'hono/basic-auth'
const app = new Hono()
app.get(
'/secure',
basicAuth({ 'admin', 'axkdu2w23' }),
(c) => {
return c.text('You are authorized')
}),
) |
Beta Was this translation helpful? Give feedback.
-
|
Yes, that is in the documentation. But what I mean is that you can discriminate access to a route by role and/or permissions. ¿? |
Beta Was this translation helpful? Give feedback.
-
|
I don't know if casbin would be compatible, I tried looking it up but didn't see any clear signs. But for making access based off a role is very easy to setup. I have an auth middleware and I pass it the roles I want to allow. Eg. |
Beta Was this translation helpful? Give feedback.
-
|
From what I see in casbin, there is no provided middleware for hono, but here are some of their other middleware you can use as an example. Then you can use the custom middleware on any route. app.get(
'/secure',
casbinAuthz(<roles or permissions>),
(c) => {
return c.text('You are authorized')
}),
) |
Beta Was this translation helpful? Give feedback.
-
Is it possible to protect routes using for example casbin?
Beta Was this translation helpful? Give feedback.
All reactions