From the course: Building APIs with LoopBack
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
What is LoopBack's default security? - Node.js Tutorial
From the course: Building APIs with LoopBack
What is LoopBack's default security?
- [Instructor] Security is an incredibly important topic, and you may be wondering, how does it come into play with LoopBack? You've seen how to create a new model and then effortlessly work with data. In the real world, that's probably not what you want at all. So to be clear, the default out of the box security settings are basically anyone can do anything. That's handy for testing, certainly, but not what you'd go live with. LoopBack provides a very detailed and configurable security model. Its base concept is the access control list or ACL. An ACL is a fancy way of saying who can do what. So for example, an admin user can create and update data. An anonymous user can read it. Or, a user can create content and edit their own content, but can't edit content created by someone else. You can even go crazy and have rules like on Tuesdays, users with the first name of Ray can't create content. I'm not saying that makes sense, of course, but the point is that LoopBack allows you to…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.