When should I use this skill instead of the CRUD generator?

Use this skill when adding ACL to existing modules, modifying rules post-generation, or debugging access issues. Use the rockets-crud-generator for entirely new modules.

Can this skill handle user-owned resource filtering?

Yes, it supports ownership checks by implementing the canAccess() method in an Access Query Service and using permissions like readOwn or createOwn.

What should I do if I get a 'provider does not exist' error?

This happens when the Access Query Service is not registered in the controller's module. Ensure the service is added to both 'providers' and 'exports' in the feature module.

How do I resolve a 403 error on all requests?

A 403 on all requests usually indicates the resource is not defined in acRules. You should add the appropriate acRules.grant() definition in your app.acl.ts file.

Rockets Access Control

Name: Rockets Access Control
Author: btwld

bybtwld

0•

セキュリティとテスト

Implements and manages granular Access Control Lists (ACL) and Role-Based Access Control (RBAC) for secure backend services.

The Rockets Access Control skill provides a standardized framework for managing permissions, defining role-based access rules, and implementing ownership-based security checks. It streamlines the process of adding ACL to existing modules, debugging 403 authorization errors, and configuring Access Query Services to ensure that users can only access the data they are authorized to see. Whether you are modifying rules post-generation or building advanced custom resource hierarchies, this skill provides the specific implementation patterns, constants, and decorators needed to secure your application architecture.

主な機能

01Troubleshooting workflows for common 403 and provider errors

02Comprehensive Role-Based Access Control (RBAC) rule configuration

03Standardized resource constant and AppResource enum management

04Automated ownership checks using Access Query Services

05Decorator-based authorization for controllers and guards

060 GitHub stars

ユースケース

01Implementing multi-tenant data isolation where users only access their own records

02Resolving and debugging complex authorization failures and provider issues

03Adding granular permission layers to an existing application module

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add btwld/skills rockets-access-control

For use in Claude.ai and ChatGPT

主な機能

01Troubleshooting workflows for common 403 and provider errors

02Comprehensive Role-Based Access Control (RBAC) rule configuration

03Standardized resource constant and AppResource enum management

04Automated ownership checks using Access Query Services

05Decorator-based authorization for controllers and guards

060 GitHub stars

ユースケース

01Implementing multi-tenant data isolation where users only access their own records

02Resolving and debugging complex authorization failures and provider issues

03Adding granular permission layers to an existing application module

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add btwld/skills rockets-access-control

For use in Claude.ai and ChatGPT