Does this skill help with reference-level security?

Yes, it explains how reference operations like SET, UNSET, ADD, and REMOVE require UPDATE permissions on the producer element tracked by the SignedIdentifier.

How do I fix a PERMISSION_DENIED error in JUDO?

You should verify that the @permissions annotation exists on the target element in your ASM model and ensure the required CRUD flag (create, update, or delete) is set to true.

What is a SignedIdentifier in the JUDO ecosystem?

A SignedIdentifier is a metadata object that tracks entity provenance, including the identifier, entity type, and the specific operation or reference that produced the entity for mutation tracking.

How does JUDO handle entity creation permissions?

It uses a CreateInstanceAuthorizer that checks the CREATE flag on the owner element and validates the 'access' annotation to determine if a user can instantiate a specific entity.

JUDO Permission Management

Name: JUDO Permission Management
Author: BlackBeltTechnology

byBlackBeltTechnology

0•

Security & Testing

Manages and debugs JUDO Runtime Core permission checking flows for CRUD operations and authorization.

This skill provides comprehensive guidance on the JUDO behavior-based permission system, helping developers understand, implement, and debug authorization flows for Create, Update, and Delete operations. It outlines the architecture of specific authorizers, the role of SignedIdentifiers in tracking entity provenance, and how to configure model-level and reference-level permissions using annotations. It is particularly useful for developers building enterprise applications with JUDO who need to ensure robust data security and troubleshoot 'Access Denied' errors by tracing the flow from AccessManager to specific BehaviourAuthorizers.

Key Features

01Step-by-step permission checking flow visualization via Mermaid diagrams

02Guidance on configuring @permissions annotations for models and references

03Validation logic for SignedIdentifiers and entity provenance tracking

040 GitHub stars

05Detailed mapping of CRUD operations to specific BehaviourAuthorizers

06Debugging protocols for resolving common 'Permission Denied' and security exceptions

Use Cases

01Troubleshooting authorization failures during entity mutation or reference updates

02Implementing custom authorizers for specialized business logic in JUDO applications

03Auditing application security by verifying CRUD flags across the ASM model

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add blackbelttechnology/judo-runtime-core permission-checking

For use in Claude.ai and ChatGPT

Download Skill