Neucron
Search
K
Comment on page

Role Tokens

Welcome to the Role Tokens documentation. This guide provides information on managing role tokens within our platform. Role tokens are used to assign specific roles and permissions to users. Below, you'll find details on how to revoke roles, update role specifications, freeze role tokens, and list all available roles.

Table of Contents

  • Role Tokens
    • Revoking Roles
    • Updating Role Specifications
    • Freezing Role Tokens
    • Listing All Roles
    • Security Considerations

Role Tokens

Role tokens are an essential part of our platform's access control system. They enable administrators to assign and manage roles for users efficiently.

Revoking Roles

Use the following API endpoint to revoke a role from a user:
API Endpoint: POST /api/role-token/revoke
Payload:
{
"userID": "target-user-id",
"roleTokenID": "role-token-id"
}
Response:
{
"status": "Role revoked"
}

Updating Role Specifications

To update role specifications, use the following API endpoint:
API Endpoint: PATCH /api/role-token/update-specs
Payload:
{
"roleTokenID": "role-token-id",
"newRoleDescription": "Updated role description"
}
Response:
{
"status": "Role updated"
}

Freezing Role Tokens

Freeze role tokens using this API endpoint:
API Endpoint: POST /api/role-token/freeze
Payload:
{
"roleTokenID": "role-token-id"
}
Response:
{
"status": "Role token frozen"
}

Listing All Roles

Retrieve a list of all available roles with this API endpoint:
API Endpoint: GET /api/role-token/all-roles
Response:
[
{
"roleTokenID": "token-id-1",
"roleName": "Role Name 1",
"roleDescription": "Description 1"
},
{
"roleTokenID": "token-id-2",
"roleName": "Role Name 2",
"roleDescription": "Description 2"
}
// ... other roles
]

Security Considerations

Developers must implement robust security measures to ensure accurate role assignments and prevent potential exploitation. Consider the following security measures:
  • Authentication and Authorization: Ensure that only authorized users can revoke roles or update role specifications. Implement strong authentication mechanisms.
  • Role-Based Access Control (RBAC): Follow RBAC principles to manage role assignments and permissions effectively. Assign roles to users based on their responsibilities and privileges.
  • Event Logging and Webhooks: Incorporate event logging to keep track of role changes. Consider setting up webhooks or notifications to alert relevant parties of role modifications.
  • Regular Auditing: Conduct regular audits of role assignments and permissions to identify and rectify any inconsistencies or security vulnerabilities.
By following these security best practices, you can enhance the integrity and security of your role token system. If you have further questions or need assistance, please refer to our developer documentation or reach out to our support team.
Previous
Work Tokens
Last modified 3mo ago