The manual doesn’t seem to really explain how the authorization role for the agent are determined, just how to declare the roles for the resource.

The JWT section of the manual also doesn’t seem to exist.

@jonathanj have a look at dev/security.clj in the yada repository

I was looking at it but it's still not clear regarding the roles thing.

the roles look ok to me ? However I would also welcome an example with programmatic oauth authentication (ex. not login but via http requests)

I guess it just needs to be a roles key in the jwt?

basically yes

containing a vector of roles IIRC

I'm running my yada server on a server for the first time so I want to launch it from my -main function, but it returns immediately. How do I make it block?

During development I just start a (yada/listener ..) in a repl.

@(promise)

(or read for the same issue in aleph, or use edge)

or (wait) if you use boot

thanks @nha! that did the trick and thanks for the search term also.