Roles & ACLs ​

Roles are essentially named groupings of ACLs that are capable of being linked to users that define what capabilities the linked user can perform. A Permission system validates the ACLs required to perform an API action based off the Roles associated to the user account performing the action. In addition to API validation, the Argonaut Web Console also validates ACLs to avoid presenting options to users that aren't available to perform.

Authentication Providers ​

The Argonaut Authentication Service allows Users to login using different Authentication Providers. The default "local" Authentication Provider uses the user's username & password that are configured on the user settings page. The "badge" Authentication Provider only uses the badge configured in the user settings page. Each Role has a configurable list of Authentication Providers that it will be enabled for, so that different ACLs can be made available when different Authentication Providers are used.