(no title)
localtoast | 2 years ago
Mind sharing your process to achieve what sounds like successful implementation of the much-requested ACL/RBAC support?
localtoast | 2 years ago
Mind sharing your process to achieve what sounds like successful implementation of the much-requested ACL/RBAC support?
JohnTheNerd|2 years ago
- read access is mostly available for sensors, even if access wasn't granted.
- some integrations (especially custom integrations) don't care about authorization. my fork mentioned in the blog does, because I explicitly added logic to authorize requests. the HomeAssistant authorization documentation is outdated and no longer works. I looked through the codebase to find extensions that implement it for an example. maybe I should submit a PR that fixes the doc...
- each entity needs to be explicitly allowed. this results in a massive JSON file.
- it needs a custom group added to the .storage/auth file. this is very much not officially supported. however, it has survived every update I have received so far (and I always update HomeAssistant)
I will share what I did in detail when I get some time on my hands
localtoast|2 years ago