Imported Google Group message. Original thread at: Redirecting to Google Groups Import Date: 2016-01-19 21:01:49 +0000.
Date:Monday, 1 September 2014 23:43:36 UTC+1.
I find myself excited by the potential of Tyk so I’m watching it closely - so far it looks excellent.
I have a couple of questions but it is entirely possible I’ve missed this in the documentation - or that I’ve missed the point entirely - so let me know if this is the case.
It seems to me that each user would map to a key in Tyk, then each API configuration would apply appropriate access control etc… via the access_rights section by listing the keys as necessary.
Is there a way to:
extract these access rights from an alternate datasource that - e.g. some db, or file (i.e. an extension point or similar…)?
roll-up these access rights into groups and roles - perhaps by generating a key for the role and propagating multiple keys for a user (being their own key, and a key for each role/group they’re in)?
extract and use information from an identity provider to adjust the target uri (e.g. append a userId to the target URI or add a query param after extracting the user id from the identity provider using the access token)?
alternatively, is there a way to write an extension that adds this functionality?
It feels remarkably like the role of an ESB or similar to provide these features and I don’t expect that’s the purpose of Tyk at all - so perhaps I am missing the point.