Best way to authenticate interactions

[BorisKourt]

Can you point me in the right direction to authenticate certain interactions within an ns? For example I want to authenticate create but not show in one ns, while all interactions in another.

I notice you mention (identified via authentication headers) in one comment, how would I apply something like the basic Friend authentication example to Rook?

Thank you!

[hlship]

In the apps we're building with Rook, authentication is in two parts:

• metadata on the individual endpoints to describe the required authorization (e.g., role or permission required)
• middleware on the endpoint that creates handlers to authenticate requests and check authorization

I'll take a peek at the Friend example and see if I can add an equivalent to the Rook documentation.

[BorisKourt]

That would be amazing, thank you. I just don't know where to plug in what :(

[hlship]

Sorry, no progress on this lately, but I'll probably do a lot of documentation updates after the Swagger support (part of 0.1.27) is working acceptably.

[BorisKourt]

Thank you for your update here!