admin/yakpanel-core
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
8e166c8bde6fee3e5f75b79c134a290d834eac92
yakpanel-core/architecture/2026/12-identity-phase-implementation.md
Niranjan 31fe556bb0 new changes
2026-04-07 20:29:49 +05:30

857 B
Raw Blame History

Phase 2 Implementation: Identity Core

Delivered

  • Identity route group in panel-api/routes/api_v1/identity.php.
  • Controllers for auth, tenants, and RBAC module boundaries:
    • AuthController
    • TenantController
    • RbacController
  • Scope evaluator service for allow/deny decision logic:
    • ScopeEvaluator::isAllowed(...)
  • Identity schema additions:
    • api_tokens
    • sessions
    • mfa_factors

Behavior Contract

  • Every protected endpoint requires bearer auth middleware.
  • Access checks are explicit through RBAC grant evaluation.
  • Session/token tables support rotation, revocation, and forensic tracking.

Next phase options

  • Wire persistent Eloquent models and form requests.
  • Add tenant-aware middleware that injects active tenant context.
  • Replace placeholder auth responses with JWT + refresh token issue/rotation.
Reference in New Issue View Git Blame Copy Permalink