Just a short announcement: last week we released 2sxc 7.1 which now includes permissions on Content-Types, Views and Queries. Thanks to this we were able to create full REST support, so that you can create, read, update, delete Content-Items though HTTP/JavaScript.
Permissions?
Yes. In 2sxc 7.1 permissions can be applied to the following things:
- Content-Types. This is important to say things like "Feedback Items can be created by anonymous users and can be edited by Registered Users"
- Views. This allows you to create No-Code Apps with multiple server views (like Token Templates) but ensure that the Admin-Views are only accessible for Admins. With this you can now create complex Apps without any code on the server.
- Queries. Now you can give anonymous users the right to access your visual query like "Get all Blog Items with the Category specified in the URL" to create awesome, complex apps without any code!
I created extensive instructions for Permissions here.
REST? Why would I want REST?
REST is a simple standard to allow JavaScript to access content-items. With URLs like:
- GET .../app-content/Feedback
You could get a JSON of all feedback items
- GET .../app-content/Feedback/27
You would get a JSON for feedback item 27
- POST .../app-content/Feedback
Sending a JSON there would would create a new item
- POST .../app-content/Feedback/27
Sending a JSON there would update the item 27
This is super-simple and very powerful. Since you can control the permissions per content-type, you can specifiy who is allowed to create, edit etc. Now you can create powerful JavaScript Apps without ANY CODE on the server :)!
Explained and documented here.
Give it a try!
I created a trivial demo-app - have fun
With love from Switzerland,
Daniel