Skip to content

User Authentication

Jump to bottom Edit New page
Asheesh Laroia edited this page Feb 14, 2015 · 10 revisions

User authentication

A Sandstorm app delegates authentication to the Sandstorm platform. This page documents the details.

sandstorm-http-bridge

Many apps on Sandstorm expect to receive HTTP requests. To support those apps, Sandstorm provides a tool called sandstorm-http-bridge.

Developers should know that when their app is running, they are receiving HTTP requests from sandstorm-http-bridge rather than directly from the user. This results in a few interesting properties:

  • Sandstorm knows which user is making the request, so it can add headers indicating the username ("authentication").

  • Sandstorm knows if the user owns this grain, so it can add headers indicating what permissions the user has ("authorization").

  • When your app receives HTTP requests, sandstorm-http-bridge has normalized them, so your app doesn't have to handle whatever dialect of non-compliant HTTP the user is speaking.

Headers that an app receives

FIXME

Apps operating without sandstorm-http-bridge

It is possible to write a Sandstorm app that does not use sandstorm-http-bridge! We provide sample code for that in the sandstorm-rawapi-example repository on GitHub.

Add a custom footer

Home

Code Contribution

Giving Talks

Clone this wiki locally