Fork me on GitHub
#yada
<
2017-02-28
>
stijn09:02:52

@malcolmsparks that would certainly be welcome here. we currently don't encrypt the traffic between our load balancers and the app server...

malcolmsparks09:02:05

Right. I believe you'd need to to get through a PCI or FIPS audit

stijn09:02:20

interesting read about cloudbleed

malcolmsparks09:02:08

If you alter before, you get yada's shorthand expansion and validation. If you alter afterwards, you need to take a little care not to break the validation

sickill09:02:12

ok, so it's expansion+validation

sickill09:02:32

I'll alter after, as I mostly want to set custom 404 responses

Rachel Westmacott15:02:32

Is it straightforward to have multiple access-control schemes for a resource? Or should I create multiple routes/resources backed by the same code?

malcolmsparks15:02:27

The former should be ok. Yada supports multiple auth schemes

Rachel Westmacott15:02:27

{:access-control {:scheme #{"Basic" "My Custom Auth"}}} ?

Rachel Westmacott15:02:47

(am currently reading the manual...)

malcolmsparks15:02:41

Yes, but that's shorthand. The longhand supports a collectio

malcolmsparks15:02:06

You can view the longhand by printing out a resource

malcolmsparks15:02:24

You can even publish this with yada

malcolmsparks16:02:29

Take a resource and wrap it in yada/handler

Rachel Westmacott16:02:10

I've done that accidentally before!

Rachel Westmacott17:02:52

there isn't anything like the example project.clj for leiningen for yada resource models is there?