Permissions and Access Controls
Overview
Who controls access to what is of paramount importance to the mission of the RAIR project. Effectively all permissions in RAIR are governed by a valid sessionID that is generated either from valid onchain or offchain data by the RAIRnode.
On-chain vs Off-chain Checks
As currently configured:
Onchain checks (from blockchain data) are required for: Admin access. DRM unlocking of videos.
Offchain checks (from internal database) are required for: Superadmin access. Setting user flags like Yoti age verification.
SessionID
Browser cookies delineate access to RAIR. The process for validating all users is the same:
Send a valid user's 0x address to the RAIRnode
Validate onchain or offchain the correct parameters
Pass a valid SessionID to the users browser.
User Types
Successful RAIR Validation offers tooling for 3 types of user by default:
Type 1 - Basic user. Low-level access. Users accessing deployed systems to buy/sell NFTs, consume content etc.
Type 2 - Admin/Creator. Mid-level access. Users can deploy NFT collections, update their metadata, upload videos, etc.
Type 3 - Superadmin. Top-level access. Full control over deployment of the system. Site wide UI/UX, showing and hiding collections, setting, site wide royalties etc.
Last updated