User

Ludobox uses Flask-Security as a system to manage users.

Register, Login, Logout

Use the following URLs

  • /register : POST email, password, confirm_password
  • /login : POST email, password
  • /logout : POST

Roles

There is 4 roles : - anonymous (not logged in) - contributor (can add and edit content) - editor (can delete content, but not users) - superuser (admin),

The first user registered get the role of superuser.

Then every registered user is a contibutor

Access rights per role

C = Create (ex: Upload game)
R= Read (ex: Download game)
U= Update (Modify)
D = Delete

Without account :
Games: R, if in validated state
Workshop: R, if in validated state
Page: R (including accounts list, user pages), if in validated state
User account: C

With contributor account :
Games: C, R (needs review & validated states),  U, D (only your own)
Workshop: C, R (needs review & validated states), U, D (only your own)
Page: R

With editor account :
Games: C, R (needs review & validated states),  U, D
Workshop: C, R (needs review & validated states), U, D
Page: R, U, D

With admin account :
Games: C, R (all states), U, D
Workshop: C, R (all states), U, D
Pages: C, R (all states), U, D
User account: C, R, U, D

User Profile

You can access user profile data under /api/profile/:user_id.