Adding Roles

Now that we have given a basic description of what the Session request is and does, before we get into the actual authentication of each individual network request, we need to make a few comments on how you set up roles for the apps. In general a role is designed to help restrict the availability of certain features of the app to certain people (as set up in Group Control). Our apps have at least the roles admin and base, and many apps add other roles for specific functionality.

It is necessary before being able to properly use the authentication features that will be described on the next page, that the database is properly set up with any roles you will need. However, the specific details of how to write a database migration in general as well as specific information about how to add Group Control related information are documented elsewhere, so all we have to say here is that these steps must be done before moving on to actually attempting to authenticate specific requests.