loopback/common/models
ebarault f0e70dd8a9 Fix Role.isOwner() for multiple user models
Fix `Role.isOwner()` to check both principalId and principalType.
This fixes a bug where users from different User model were treated
as owners as long as their user id was the same as owner's id.
2017-02-17 11:19:07 +01:00
..
README.md Dismantle `lib/models`. 2014-10-13 12:09:27 +02:00
access-token.js Enable multiple user models 2017-02-02 09:42:30 +01:00
access-token.json Remove workaround for default value 2016-11-22 20:58:27 -05:00
acl.js Enable multiple user models 2017-02-02 09:42:30 +01:00
acl.json models: move ACL LDL def into a json file 2014-10-14 09:04:43 +02:00
application.js Update eslint to loopback config v5 2016-11-22 14:08:02 +01:00
application.json Update eslint to loopback config v5 2016-11-22 14:08:02 +01:00
change.js Update eslint to loopback config v5 2016-11-22 14:08:02 +01:00
change.json models: move Change LDL def into a json file 2014-10-14 09:04:43 +02:00
checkpoint.js Update eslint to loopback config v5 2016-11-22 14:08:02 +01:00
checkpoint.json models: move Checkpoint LDL def into a json file 2014-10-14 09:04:43 +02:00
email.js Update eslint to loopback config v5 2016-11-22 14:08:02 +01:00
email.json models: move Email LDL def into `email.json` 2014-10-14 08:58:17 +02:00
key-value-model.js Update eslint to loopback config v5 2016-11-22 14:08:02 +01:00
key-value-model.json common: add KeyValueModel 2016-08-10 14:15:22 +02:00
role-mapping.js Enable multiple user models 2017-02-02 09:42:30 +01:00
role-mapping.json Enable multiple user models 2017-02-02 09:42:30 +01:00
role.js Fix Role.isOwner() for multiple user models 2017-02-17 11:19:07 +01:00
role.json Add missing type to Role properties definition 2017-01-30 11:37:33 +01:00
scope.js Update eslint to loopback config v5 2016-11-22 14:08:02 +01:00
scope.json models: move Scope def into its own files 2014-10-14 08:58:17 +02:00
user.js Fix creation of verification links 2017-02-06 12:39:21 +01:00
user.json test: use local registry in test fixtures 2016-07-27 10:07:49 +02:00

README.md

Application

Application model represents the metadata for a client application that has its own identity and associated configuration with the LoopBack server.

Each application has the following basic properties:

  • id: Automatically generated id
  • name: Name of the application (required)
  • description: Description of the application (optional)
  • icon: URL of the icon
  • status: Status of the application, such as production/sandbox/disabled
  • created: Timestamp of the record being created
  • modified: Timestamp of the record being modified

An application has the following properties linking to users:

  • owner: The user id of the developer who registers the application
  • collaborators: A array of users ids who have permissions to work on this app

oAuth 2.0 settings

  • url: The application url
  • callbackUrls: An array of preregistered callback urls for oAuth 2.0
  • permissions: An array of oAuth 2.0 scopes that can be requested by the application

Security keys

The following keys are automatically generated by the application creation process. They can be reset upon request.

  • clientKey: Secret for mobile clients
  • javaScriptKey: Secret for JavaScript clients
  • restApiKey: Secret for REST APIs
  • windowsKey: Secret for Windows applications
  • masterKey: Secret for REST APIS. It bypasses model level permissions

Push notification settings

The application can be configured to support multiple methods of push notifications.

  • pushSettings

    pushSettings: { apns: { certData: config.apnsCertData, keyData: config.apnsKeyData, production: false, // Development mode pushOptions: { // Extra options can go here for APN }, feedbackOptions: { batchFeedback: true, interval: 300 } }, gcm: { serverApiKey: config.gcmServerApiKey } }

Authentication schemes

  • authenticationEnabled
  • anonymousAllowed
  • authenticationSchemes

Authentication scheme settings

  • scheme: Name of the authentication scheme, such as local, facebook, google, twitter, linkedin, github
  • credential: Scheme-specific credentials

APIs for Application model

In addition to the CRUD methods, the Application model also has the following apis:

Register a new application

You can register a new application by providing the owner user id, application name, and other properties in the options object.

Application.register('rfeng', 'MyApp1',
    {description: 'My first loopback application'},
    function (err, result) {
        var app = result;
    ...
});

Reset keys

You can reset keys for a given application by id.

Application.resetKeys(appId, function (err, result) {
    var app = result;
    ...
});

Authenticate by appId and key

You can authenticate an application by id and one of the keys. If successful, it calls back with the key name in the result argument. Otherwise, the keyName is null.

Application.authenticate(appId, clientKey, function (err, keyName) {
        assert.equal(keyName, 'clientKey');
        ...
});