The aim is to implement a least privilege model, i.e., each user is granted
the minimum system resources and authorizations that they need.
https://csrc.nist.gov/glossary/term/least_privilege
Will try it with _rewrite as a function.
In addition to per document authorization, what limits a user/member from
creating an infinite number of databases? It seems like a native rich auth
model could be built with a *request function* having req, oldDoc, newDoc,
userCtx, and secObj *but* for max power the verify function would also need
to call/request other endpoints, for example, .length of GET all db with
owner/author = userCtx.id/sub in order to limit db's per user.
--
Ronnie Royston
(504) 460-1592