Hi @rp I am creating a boilerplate for Nestjs as a starting point for any application I work on in future. For authentication I choose firebase initially but then decided to go with super tokens. For authorization I was going for cerbos or openfga. But since most of the applications I develop have very basic roles and checks I thought it would be better if I can find a good way of implementing authorization using just super tokens.
1. Role based access which super tokens provide
2. Make sure that a comment created by user can only be updated or removed by the same user.
Like if user.id === article.userId