- authentication policy
- authentication policies
- An authentication method enabled in configuration
- Kinto-Core HTTP API
- A system of rules that explains the way to interact with the HTTP API endpoints (utilities, synchronization, headers etc.), and how data is organized (JSON responses etc.).
- Acronym for Create, Read, Update, Delete
- An endpoint handles a particular HTTP verb at a particular URL.
- «Extensible» means that the component behaviour can be overriden via lines of code. It differs from «pluggable».
- Firefox Accounts
- Identity Provider run by Mozilla (https://accounts.firefox.com).
- Identity Provider
- An identity provider (abbreviated IdP) is a service in charge of managing identity information, and providing authentication endpoints (login forms, tokens manipulation etc.)
- HTTP API
- Multiple publicly exposed endpoints that accept HTTP requests and respond with the requested data, in the form of JSON.
- «Keep it simple, stupid» is a design priciple which states that most systems work best if they are kept simple rather than made complicated.
- «Pluggable» means that the component can be replaced via configuration. It differs from «extensible».
- A resource is a collection of records. A resource has two URLs, one for the collection and one for individual records.
- user id
- user identifier
- user identifiers
- user identifier
- A string that identifies a user. It is prefixed with the authentication
policy name (eg.
google:firstname.lastname@example.org, …). These identifiers are used to refer to users in permissions or groups.
- Also refered as «records», objects are stored by Kinto-Core resources.
- When a record is deleted in a resource, a tombstone is created to keep
track of the deletion when polling for changes. A tombstone only contains
last_modifiedfields, everything else is really deleted.
- An entity that can be authenticated. Principals can be individual people, computers, services, or any group of such things.
- An action that can be authorized or denied. read, write, create are permissions.
- Semantic Versioning
- A standard MAJOR.MINOR.PATCH versioning scheme. See http://semver.org/.
- Access Control Entity
- An association of a principal, an object and a permission. For instance, (Alexis, article, write).
- Access Control List
- A list of Access Control Entities (ACE).