- authentication policy
- authentication policies
An authentication method enabled in configuration
- Kinto-Core HTTP API
A system of rules that explains the way to interact with the HTTP API endpoints (utilities, synchronization, headers etc.), and how data is organized (JSON responses etc.).
Acronym for Create, Read, Update, Delete
An endpoint handles a particular HTTP verb at a particular URL.
«Extensible» means that the component behaviour can be overriden via lines of code. It differs from «pluggable».
- Firefox Accounts
- Identity Provider
An identity provider (abbreviated IdP) is a service in charge of managing identity information, and providing authentication endpoints (login forms, tokens manipulation etc.)
- HTTP API
Multiple publicly exposed endpoints that accept HTTP requests and respond with the requested data, in the form of JSON.
«Keep it simple, stupid» is a design priciple which states that most systems work best if they are kept simple rather than made complicated.
«Pluggable» means that the component can be replaced via configuration. It differs from «extensible».
A resource is a collection of records. A resource has two URLs, one for the collection and one for individual records.
- user id
- user identifier
- user identifiers
A string that identifies a user. It is prefixed with the authentication policy name (eg.
google:firstname.lastname@example.org, …). These identifiers are used to refer to users in permissions or groups.
Also refered as «records», objects are stored by Kinto-Core resources.
When a record is deleted in a resource, a tombstone is created to keep track of the deletion when polling for changes. A tombstone only contains the
last_modifiedfields, everything else is really deleted.
An entity that can be authenticated. Principals can be individual people, computers, services, or any group of such things.
An action that can be authorized or denied. read, write, create are permissions.
- Semantic Versioning
A standard MAJOR.MINOR.PATCH versioning scheme. See http://semver.org/.
- Access Control Entity
An association of a principal, an object and a permission. For instance, (Alexis, article, write).
- Access Control List
A list of Access Control Entities (ACE).