Permissions and Access Controls

Overview

Who controls access to what is of paramount importance to the mission of the RAIR project. Effectively all permissions in RAIR are governed by a valid sessionID that is generated either from valid onchain or offchain data by the RAIRnode.

On-chain vs Off-chain Checks

As currently configured:

Onchain checks (from blockchain data) are required for: Admin access. DRM unlocking of videos.
Offchain checks (from internal database) are required for: Superadmin access. Setting user flags like Yoti age verification.

SessionID

Browser cookies delineate access to RAIR. The process for validating all users is the same:

Send a valid user's 0x address to the RAIRnode
Validate onchain or offchain the correct parameters
Pass a valid SessionID to the users browser.

User Types

Successful RAIR Validation offers tooling for 3 types of user by default:

Type 1 - Basic user. Low-level access. Users accessing deployed systems to buy/sell NFTs, consume content etc.
Type 2 - Admin/Creator. Mid-level access. Users can deploy NFT collections, update their metadata, upload videos, etc.
Type 3 - Superadmin. Top-level access. Full control over deployment of the system. Site wide UI/UX, showing and hiding collections, setting, site wide royalties etc.

PreviousRAIRnode NextBackend Variables Library

Last updated 7 months ago